• pfBlockerNG-devel v3.0.0 - No longer bound by Unbound!

    Pinned
    94
    10 Votes
    94 Posts
    88k Views
    GertjanG
    @flepti said in pfBlockerNG-devel v3.0.0 - No longer bound by Unbound!: my setup too You mean you use pfSense 2.4.5 and "007" fBlockerNG-devel ? Easy solution : upgrade ?!
  • Firewall Rules Order

    Pinned
    34
    0 Votes
    34 Posts
    24k Views
    V
    so happy to find the explanation relating the tables and lists!! thanks!
  • Bypassing DNSBL for specific IPs

    Pinned
    114
    5 Votes
    114 Posts
    91k Views
    JonathanLeeJ
    @mcury thanks for the reply I will test this soon and yet you know how it works out.
  • Support pfBlockerNG development!

    Pinned
    5
    4 Votes
    5 Posts
    11k Views
    A
    I can not wait to see how he is going to do the mass import for IP4 and DNSBL, I hope its just a simple text doc you can just upload just like you would a backup file on Ublock extension. Looking forward to it. I may have to get some more Ram lol only got 8 gig and I bet doing mass list imports will hit the Ram hard. Great work hope it's coming along well ;) Great job.
  • PfBlockerNG v2.1 w/TLD

    Pinned
    124
    1 Votes
    124 Posts
    266k Views
    E
    It would be really cool if it could automatically update the blocked TLDs based on the spamhaus statistics (https://www.spamhaus.org/statistics/tlds/) on a regular schedule. I realize that this may be more difficult than it sounds as I cant seem to find a spamhaus TLD feed, just a website. But if we dont dream then it will never happen!
  • PfBlockerNG v2.0 w/DNSBL

    Pinned
    1k
    2 Votes
    1k Posts
    2m Views
    RonpfSR
    @ck42 The entry is related to Firewall / pfBlockerNG/ DNSBL / DNSBL Category Blacklist.
  • PfBlockerNG

    Pinned
    1k
    2 Votes
    1k Posts
    2m Views
    K
    @breeoge said in PfBlockerNG: @belt9: I wanted to chime in here as I just updated from a month old RC to 2.4.0-RELEASE last night and ran into this problem today. I haven't read through all of the many pages of the many threads that seem related to this issue (show how popular pfBNG is!), so maybe this has already been covered. But I've seen several people state that this doesn't happen on ZFS - I have a raidz2 ZFS install, and this happened to me, just throwing that out there. That is good to know. Thank you for the report.  BBcan177 is currently updating it to use SQLlite and this should fix any issues in the future.  In the other thread there is a temp fix posted.. https://create.vista.com/colors/palettes/ Thank you BreeOge Hello my friend. Many thanks to Bbcan177 for keeping the report up to date. as a result of this, in principle, the given problems are corrected.
  • pfBlockerNG not logging anything by default?

    42
    0 Votes
    42 Posts
    650 Views
    R
    @Gertjan s7.vonderste.in resolves to 94.16.122.152. I just saw a dns request for that. In the whitelist on OTX Alienvault there is a timeserver: 3.de.pool.ntp.org I just don't know why a timeserver runs on a TOR node and seems to be hosted by a private person. Maybe pfblocker resolves it incorrectly becaues the time server is hosted on the same IP? Anyway I see this coming from my ASUS router which is in Access Point mode. These weird domains always come up every hour and I think they are related to ntp on that ASUS router. Since I disconnected it it has stopped. Here is an example of what I see. Scanning these IPs shows nothing malicious but who knows. 93.122.215.85.in-addr.arpa,192.168.1.8,sonne.floppy.org,unk 94.244.38.46.in-addr.arpa,192.168.1.8,basilisk.mybb.de What didn't stop was on my work computer these weird replies as mentioned above. reply,A,NSEC,1081,domaincontroller-gPHvwjYS.local,192.168.1.86,NXDOMAIN,unk But it only happend once today instead of multiple times like the days before. @Gertjan said in pfBlockerNG not logging anything by default?: Where - what log - did you find that URL (DNS only deals with host names) ? I find them in pfblockerNG dns_reply log under Logs EDIT: I just realized that it is kind of in the name pool.ntp.org its made up of multiple sources so it does make sense that it resolves some of these weird private hosts?
  • pfBlockerNG-devel 3.2.8 service pfb_dnsbl don't start

    3
    0 Votes
    3 Posts
    85 Views
    A
    @Gertjan said in pfBlockerNG-devel 3.2.8 service pfb_dnsbl don't start: Masterfile Count [ 16446 ] Deny folder Count [ 16445 ] This sanity check failure might be the issue as discussed here: pfblockerNG Database Sanity check Failed
  • After Update to pfBlockerNG 3.2.7 (25.07-RELEASE) pfb_dnsb won´t start

    7
    0 Votes
    7 Posts
    93 Views
    w0wW
    So you're using the CARP IP address for the pfBlockerNG redirects? May I ask why that's necessary?
  • Trying to configure Maxmind - 401 Unauthorized

    2
    0 Votes
    2 Posts
    77 Views
    M
    I resolved this by accepting the T+Cs via https://www.maxmind.com/en/accounts/1205389/geolite2/eula
  • DNSBL (Python mode) errors Found!

    8
    0 Votes
    8 Posts
    1k Views
    reza3swR
    @Gertjan Hello, Thank you. I had exactly the same issue, and your solution helped me fix it. Ask ChatGPT
  • pfBlocker install memory issues and fake GeoIP blocks ?

    7
    0 Votes
    7 Posts
    164 Views
    N
    @SteveITS ...got it, I should have looked in the docs... I do too use Quad9 and have DNSSEC disabled, so I guess my question is pointless.. Thank you for all the help.
  • DNSBL_Malicious not downloading

    10
    0 Votes
    10 Posts
    560 Views
    W
    @qinn Sent him an email Dan an email to the address on his site.. Not sure what is happening, my Teams stopped working. Disable it/turn it off and the problem went away.
  • Can't receive GeoIP databases updates anymore, banned

    4
    0 Votes
    4 Posts
    211 Views
    GertjanG
    @AlexK-0 said in Can't receive GeoIP databases updates anymore, banned: Days ago, I received from MaxMind an email, notifying me that my country has been banned to receive GeoLite City database updates. You've found a reason to use a VPN.
  • New pfblockerNG install Database Sanity check Failed

    39
    0 Votes
    39 Posts
    5k Views
    M
    @Laxarus This worked for me as well. Though I had to search the web how to edit the file (the easiest way). Therefore: Addition for anyone struggling to find where to edit files on your pfsense system. Go to Diagnostics --> Edit File --> insert the location of the file: /usr/local/pkg/pfblockerng/pfblockerng.sh Go to line number 1232 by filling it in the Go to line field. That line should read: s1="$(grep -cv ^${ip_placeholder2}$ ${masterfile})" replace only (leave the rest intact): masterfile to mastercat Then follow the above instructions from @Laxarus https://forum.netgate.com/post/1219635
  • PHP memory error

    5
    0 Votes
    5 Posts
    473 Views
    K
    Thanks everyone. That did it. No more errors!!
  • Feed issue on SWC

    7
    0 Votes
    7 Posts
    602 Views
    fireodoF
    @Qinn said in Feed issue on SWC: Got a reply from Dan and here it is solved. Thanks for feedback!
  • pfblockeer 3.2.8 + pfsense 2.8.0: top1m db download fail

    4
    0 Votes
    4 Posts
    454 Views
    sretallaS
    You can download it here now: https://raw.githubusercontent.com/ianb/alexa-sites/refs/heads/master/top-1m.csv
  • Blocking of Discord

    5
    0 Votes
    5 Posts
    334 Views
    M
    @The-Party-of-Hell-No excellent. I’m glad some experimentation proved successful.
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.