3

What if... I'd cut off all connections to China on my home network?

posted
by
Avatar
mikandesu@alien.topB
in
Avatar
homenetworking@selfhosted.forum
62 comments
hidereport

I’m just curious, what if I’d use my pi-hole to block all connections from/to China on my home network. I have a good bit of automation in place, but mostly western solutions, yet still I wouldn’t be surprised if they called China. Have any of you tried this kind of experiment? Is it even possible to block? What gone down?

Sort:
HotTopControversialNewOld
Avatar
HBGDawg@alien.topB
5 points

Geoblocking is a pretty common practice in enterprise networking.

permalink
report
reply
Avatar
Darklumiere@alien.topB
3 points

I block all inbound connections from China and Russia via GeoIP blocking in Opnsense and no one in my household has ever complained. Considering setting it up to blocking outgoing as well, but any Chinese device I’m suspicious of is already isolated from the WAN.

permalink
report
reply
Avatar
Swatieson@alien.topB
1 point

What’s more suspicious than Alexa or our phones? The "bad guys’ can do jack shit with our data but the “good guys” can fuck us up.

permalink
report
parent
reply
Avatar
psychobobolink@alien.topB
1 point

Well, just blocking incoming connections doesn’t add much value. Besides if you also block already established connections, but then it would be easier saying blocking outgoing traffic.

permalink
report
parent
reply
Avatar
Stormhunter6@alien.topB
1 point

good to know this is an innate feature of opnsense

permalink
report
parent
reply
Avatar
Graham2990@alien.topB
2 points

It’s a common feature in a lot of threat management software / firewall systems. Ubiquiti and pfSense both offer it off the top of my head. I’ve used both with no noticeable issues on smart / IOT devices.

permalink
report
reply
Avatar
binarylattice@alien.topB
2 points

I do this, the only problematic thing is the NTP request from my Philips Hue bridge.

permalink
report
reply
Avatar
phonyfakeorreal@alien.topB
1 point

I block China and Russia on my router and haven’t noticed it one bit. I was most worried about my Tuya lights not working, but even those have been fine.

permalink
report
reply
Avatar
wifimonster@alien.topB
1 point

I think tuya has US data centers. I remember picking something like that when I set up the developer portal.

permalink
report
parent
reply

Home Networking

!homenetworking@selfhosted.forum

Create post

A community to help people learn, install, set up or troubleshoot their home network equipment and solutions.

Rules

  • Please stay on topic.
  • Please use the search function to look for keywords related to what you want to ask before posting since most common issues have been answered.
  • No Ads. This community is for support and discussion. Ads and self promotion are not welcome here.
  • No product reviews or announcements. If you have a question about a product, be specific about what you want to know.
  • Be civil. Don’t be a jerk. Not being a jerk is surprisingly easy.
  • No URL shorteners. URL shorteners tend to hide the real use of a link. For this reason, please use normal links, even if they’re long.
  • No affiliate links.
  • No gatekeeping. With profession shall come professionalism. Extend help without judging others for their ignorance. The same goes for downvoting of comments or posts for “stupid questions” or not being as knowledgeable as others.

Community stats

  • 12

    Monthly active users

  • 1.8K

    Posts

  • 5.1K

    Comments

Community moderators