ids – IP Blocklists for Firewall (pfSense)

We want to improve cyber security and I consider installing Suricata on our firewall (pfSense). Malware and Ransomware (as for anyone, I guess) concerns me much and one way to deny Ransomeware its need is to block IPs for c2 Server or other calls to home.

On the blocking side of things I want to use

For alerts I consider using the ETOpen ruleset (

How useful do you think are these, and do you recommend other Blocklists and Rulesets which are trustworthy, updated regularly and do not contain many false positives.

Thanks for your advice