@rtorres Thanks for this! So just edit that one file? This is what my entire lime 391 looks like: $options_suppression_cidr = [ 'Disabled' => 'Disabled' ] + array_combine(range(1, 17, -1), range(1, 17, -1)); I tried changing both -1's to 1 and it did not make any difference - even after restating pfBlockerNG. And ideas? Thanks man! UPDATE - I had to change both -1s to 1s in two different places in that same file. THANKS!

@Gertjan Right. Although interval of update shouldn't matter, it just seems 'odd' that a description field appears to be updated in config.xml with every run and yet the "feeds" themselves are outside of the config.xml - thus there shouldn't be another config backup. At least I'm not the only person who's experiencing this. Cheers'

@BBcan177 As per https://forum.netgate.com/topic/179060/pfblockerng-sync-not-working/54 (and https://redmine.pfsense.org/issues/14189) the account ID doesn't sync to the HA backup without adding the one line fix "pfblockerng_sync_on_changes();" to pfblockerng.php (and waiting for cron to run).

@thearties3000 said in pfBlockerNG Created Rules: Using version 3.2.0.7, I earlier used the 'floating' rules options and created a rule to permit outbound to certain AS #. Can I see this rule with a screenshot? Doesn't make much sense to me to begin with.

@antonioremigio1 Curious. Are you referring to starlink being geo-ip blocked? then would bypassing by AS# works?

@MikeHalsey said in pfBlockerNG not blocking adverts in Windows 11 apps: @SteveITS Found it, turned it on, restarted the Netgate... didn't work What are your blocklists? I have a few that have been blocking a lot of Windows tracking/adverts, so far it's been working great at blocking.

@BobAce what updates?

was able to figure things out for the most part, however that issue with clicking the "Save DNSBL Settings" still exists.. so, i'm at a point where if i want to make any changes under the DNSBL tab, i have to first reboot the entire firewall. performing a full reload of ip and dnsblock lists does nothing. I click the button and nothing updates. if i reboot first, i can make changes (as long as i do it immediately after the reboot) and the "Save DNSBL Settings" button will be effective.

Great, I'll give it a try. However, could anyone advise on how to reset PFBlocker to its default settings? Ever since I activated geoblocking, my PFsense setup has become quite problematic. It's using an enormous amount of RAM, around 40GB. I've tried deselecting all countries in PFBlocker, disabling the PFBlocker GeoIP feature, and even completely uninstalling the plugin, but nothing has changed. Consequently, I installed a new PFsense and attempted to download and import a config file from the existing setup. However, the backup’s XML config still contains all the PFBlockerNG data, including geoblocking addresses, IPs, and more. Is there no way to remove PFBlocker without causing PFsense to crash or having to reinstall everything?

This is working now. I believe I must have mucked it up while the cron job was running I must have tried to reload it again.

Thank you, @Bob-Dig I had a HOST alias which is just one IP versus now same IP/32

Please delete the entire thread, or add the original question and solution.

@Gertjan Hi Gertjan, (What I meant about BBcan "Fixing this" was not that he would fix UT1, but that pfBlockerng would be able to properly parse the profered link and install the categories.) Yes the way the UT1 list was formed had occurred to me, mostly, except the details about the actual origin of the lists. I have taken your suggested steps really quite at the inception of our using pfBlocker, after abandoning Dan's Guardian. There are only a handful of sublists that I download, mostly the smut list with a couple of others. These I do individuall through groups, and that has reduced the size of the download from the way BBcan has it programmed in pfBlocker. That was to download the entire list and parse it. I certainly suspected that UT1's server was being overwhelmed. It is often a response of providers to block those who do too many downloads. This was what I was suspecting on my end. I do indeed download once a week. However one my techs had this server at every hour. It is now at once a week too. Since the web administrator there isn´t known to me I really don´t know what is happening. As far as php is concerned, I have read the pfBlockerng code and it does indeed remind me of basic. I have written in different basics, C, C++, C#, and older languages still, like Pascal, and some of the other offerings we learned in survey of computer languages, and some in an in house language that we have. I have written exes, libraries, drivers, and applications in machine code and assembly. Yada yada. What they stick in Docker and other like platforms I have not experienced, spending most of my time now trying to dominate Internet infrasture, and different firewalls, but mostly on pfSense. As far as hardware is concerned, we are a small group so I have been buying used Dell Optiplexes with maybe 6th generation or earlier CPUs, I-7s and I put 16 gigs of ram, an SSD, and appropriate NICs, usually Intel based. The units themselves cost me 120 dollars each. Then there is the cost of the upgrades which is really quite cheap. This is overkill I realize, but we have had quite good service with units like these. I am maintaing 5 locations, with 4 of them using HA. There are other Linux servers involved too. It keeps me quite busy. I apologize for not being more forthcoming with detail in what equipment I drive and what I do. I appreciate greatly your support, and the support of the forum. I have tried to contribute where I can: where there have been questions that I have answered for myself, so that I can share with others. Sometimes it works and people are helped. God bless you Gertjan, Roy

@pfpv said in pfBlockerNG or pfBlockerNG-devel?: why there are two versions of the same package Originally, the -devel version was basically an ongoing public beta/development version and original was more stagnant. At one point a few years ago after some MaxMind changes we couldn't get the non-devel to work with it, so switched all our clients to -devel, and around that point (?) I think the maintainer had recommended to just use -devel anyway. Or at least others did. So many were just using -devel along the way.