@timtrace

Have a look at the GEOIP files /var/unbound/usr/local/share/GeoIP/

The first big number is probably the number of IPs in the attributed IP range.
The second the number of IP listed.

@gertjan I agree. Seems that way to me also. Thanks for the debug code I was struggling with finding a way to display this data since I'm a novice at this. Just having fun learning.

@lowhanger

To see what cron does : install the pfSense cron package.

"Hourly" will trigger the pfBlockerNG main update function.
If a feed is set to daily, then it will upgrade daily, not every hour.

The other way arround will not work :
If you set a feed to update every 5 minutes (if that was possible) and the main cron delay is 1 hout, then the "5 minute" won't work.

Btw : updating every hour a feeds is not needed : check for yoruself : feeds are not updated every hour. Probably not for days ..... More frequent updating can be considered as abusive, and some feed hosts might blacklist your request.

@ciscox Yea that's where we differ, you're using auto-rules where pfBlocker will create the firewall rules for you. I cannot do that as I need to have some outbound only, some in and out etc, so I'm letting it create the aliases and I've created my own firewall rules using those aliases.

I think this might be the difference as if it doesn't create the firewall rules automatically, it may also not be creating ip_block.log.

I reckon that's the issue.

@andyrh said in Block youtube ADs with PiHole blacklist:

For me it broke YouTube. Videos that start with an add never play. Had to remove the list.
😧

Same for me. The DoH lists seem to be working fine, though.

@stewart Depends how big the tables are. Our notes from a while back on pfBlocker say to use "minimum 2 million."

If it's a PHP memory allocation error that's something else.

@vito-0 I have verified that the update is successful, but the message "Log Viewer Standby" appears in the log section.
Why?

@benv22 said in GeoIP autocomplete not working:

turns out i had to enable the pfBlockerNG service first on the general page

Doh! ;) hehehe

I found the solution:

downlaad freebsd 11.2 lib package with missing files winscp to pfsense and copy the missing files each time it ask.. mine needed only 2 files restart pfsense and start doing your upgrades :D

@bbcan177 Hi, thanks for the pointer to the command to fetch and filter the json file. I was not able to work out how to use the commands in an IP alias in the firewall. Does it need to be used within the source for a pfBlockerNG > IP > IPv4 > "IPv4 Source Definitions" entry? If so, do you have any links to documentation that explains how to use it? Thanks,

Sorry linked the wrong tutorial on their website, followed this one obviously

@pftdm007 said in DNSBL is no longer working normally:

Am I missing something here ?

Maybe this :

Whatever you set here about:config (URL in Firefox) will retain, even after updates.
So switch DoH of over there, and you'll be fine.
If not, Firefox will use DoH, they do so on a new install for while now, at it is undeniable safer for the end user.

@jc1976

Confirmed
Redmine issue created: https://redmine.pfsense.org/issues/12443

@dgall said in Has Shallalist been removed from the latest version of PfBlocker?:

I thought the 3.1.0 was still in the development stage I usually do not use software in the development stage because the bugs are still being worked out I upgraded to 3.1 and shallalist is listed

True .... and not so true.
The current 3.x series is now under development for over 2 years.
The 2.x series is 'abandoned' for development, and upgrades come out if there are security issues. It will be ditched soon (if you asked me).
3.x had about 20 releases, and is now pretty solid.

I had the same problem and it was Squid.
In Squid, Transparent Proxy Settings, I had to add 10.10.10.0 (in my case) to the 'Bypass Proxy for These Destination IPs' or simply check 'Bypass Proxy for Private Address Destination'.