Installation

CautiousConnect is an IPv6 security feed based on SixInt’s IPv6 intelligence mapping. These installation instructions are specific to deploying CautiousConnect with the opensource pfSense firewall, and assume a working pfSense deployment.

CautiousConnect leverages the pfBlockerNG-devel framework. If pfBlockerNG-devel is not yet installed, use the pfSense package manager to do so. Note: these instructions last updated for pfSense version 2.8.1 and pfBlockerNG-devel 3.2.14.

Once pfBlockerNG-devel is installed in an operational pfSense deployment, installing CautiousConnect is as simple as obtaining a license key (free) to the feed, and configuring the feed.

  1. To subscribe to the free CautiousConnect data feed, first register and signup:

    Register

  2. Login to your SixInt account to obtain your unique API key, for instance:
    API

  3. Next, setup the firewall to use CautiousConnect. Select the pfBlockerNG setup from the Firewall menu:

pfBlockerNG setup:

pfBlockerNG

  1. Select the Feeds option on the main pfBlockerNG setup page.

Feeds setup:

pfBlockerNG Feeds

  1. Find the CautiousConnect Feed in the list of available feeds

IPv6 Feed Configuration:

CautiousConnect Feed Setup

  1. Click the “+” icon on the CautiousConnect feed.

  1. The “IPv6 Source Definitions” section contains a source URL. Replace “_API_KEY_” in the URL with your unique API key obtained in step (2).

  2. Toggle the State to “ON”

  3. Select “Deny Both” for the Action setting

  4. Click the blue “Save IPv6 Settings” at the bottom of the page.

  1. That’s it, done! View blocked connections on the main page of the firewall, or through the pfBlockerNG logs.