This is working now. I believe I must have mucked it up while the cron job was running I must have tried to reload it again.

Thank you, @Bob-Dig
I had a HOST alias which is just one IP versus now same IP/32

Please delete the entire thread, or add the original question and solution.

@Gertjan Hi Gertjan,

(What I meant about BBcan "Fixing this" was not that he would fix UT1, but that pfBlockerng would be able to properly parse the profered link and install the categories.)

Yes the way the UT1 list was formed had occurred to me, mostly, except the details about the actual origin of the lists. I have taken your suggested steps really quite at the inception of our using pfBlocker, after abandoning Dan's Guardian. There are only a handful of sublists that I download, mostly the smut list with a couple of others. These I do individuall through groups, and that has reduced the size of the download from the way BBcan has it programmed in pfBlocker. That was to download the entire list and parse it.

I certainly suspected that UT1's server was being overwhelmed. It is often a response of providers to block those who do too many downloads. This was what I was suspecting on my end. I do indeed download once a week. However one my techs had this server at every hour. It is now at once a week too. Since the web administrator there isn´t known to me I really don´t know what is happening.

As far as php is concerned, I have read the pfBlockerng code and it does indeed remind me of basic. I have written in different basics, C, C++, C#, and older languages still, like Pascal, and some of the other offerings we learned in survey of computer languages, and some in an in house language that we have. I have written exes, libraries, drivers, and applications in machine code and assembly. Yada yada. What they stick in Docker and other like platforms I have not experienced, spending most of my time now trying to dominate Internet infrasture, and different firewalls, but mostly on pfSense.

As far as hardware is concerned, we are a small group so I have been buying used Dell Optiplexes with maybe 6th generation or earlier CPUs, I-7s and I put 16 gigs of ram, an SSD, and appropriate NICs, usually Intel based. The units themselves cost me 120 dollars each. Then there is the cost of the upgrades which is really quite cheap. This is overkill I realize, but we have had quite good service with units like these. I am maintaing 5 locations, with 4 of them using HA. There are other Linux servers involved too. It keeps me quite busy.

I apologize for not being more forthcoming with detail in what equipment I drive and what I do. I appreciate greatly your support, and the support of the forum. I have tried to contribute where I can: where there have been questions that I have answered for myself, so that I can share with others. Sometimes it works and people are helped.

God bless you Gertjan,

Roy

@pfpv said in pfBlockerNG or pfBlockerNG-devel?:

why there are two versions of the same package

Originally, the -devel version was basically an ongoing public beta/development version and original was more stagnant. At one point a few years ago after some MaxMind changes we couldn't get the non-devel to work with it, so switched all our clients to -devel, and around that point (?) I think the maintainer had recommended to just use -devel anyway. Or at least others did. So many were just using -devel along the way.

@SteveITS Works perfectly, needed more ram.

Thank u!

It appears to be a redirect of the permalink, so it should continue working unless you have a list or something blocking cloudflarestorage. https://dev.maxmind.com/geoip/updating-databases

@areckethennu For now you can use this link oisd big

I think my CPU problem might be fixed...
I found some corruption in my config.xml in regards to ipv6 and router advertisements. Somehow fixing that seems to have fixed pfblocker. Doesn't make any sense really so I'm thinking the problem might come back in a few weeks.

@SteveITS Thanks, then I will try to install it.

@garyn - the fix for issue 2587 was posted this morning. Fresh download confirms Raviu56 fix.

@RobbieTT said in pfBlockerNG - Failed to parse: pfb_py_data.txt:

Any other ideas how to simplify this hunt?

By looking at the file ?!

The format is rather simple, and 'constructed' after the DNSBL you've selected. MOst priobably, one of them contains a format error not detected by pfBlocker upon construction, but when read back in, it fails.

Start removing one by one your DNSBL feeds, and as soon as the errors goes away, you'll know which one to exclude.

Btw : this is what I would do to tackle the issue.

@reberhar So I had two similar machines acting exactly the sameway. They only shared the config file. I am preparing for HA.

Trying lots of links for the UT1 list and changing many settings, one started to work with the squidguard list. Which means that my config file is corrupted. I am not looking forward to doing a pfblocker clean install, but it seems that that is what it needs.

SIGH

@SteveITS - Thanks!

@netboy yeah your setting there is pointing stuff that is blocked to the IP that pfblocker is using.. It can not present the correct cert for the actual fqdn your browser is thinking its going to..

@Sergei_Shablovsky Do you know of a way to virtualize iOS ? Palm Pre use to do this with virtual box...

@johnpoz
Found the issue, I didn't choose the countries within the continent.
Therefore, it was not creating the alias.
Thanks for your quick responses anyway!

@JHODZ

How much DNSBL feeds do you have :

820408bc-f8f1-4dc7-9aa2-1d50b23a47f3-image.png

c306e0a5-a521-40a4-9a23-c8464307fefa-image.png

What does this log show you when you reload pfBlockerng like this :

dee28981-7849-47e1-926e-58f7d2187797-image.png

Do the test both in unbound and Python mode.