PFBlockerNG Webserver not running.
-
I think I know the answer, but I'm just checking to make sure my reasoning is sound. I installed PFBlockerNG, but I'm just using it for GEOIP blocking. It appears to be blocking according to my rules, but on the service display, it's showing that the pfBlockerNG DNSBL Web Server is not running.
I think it's okay because I'm not using the DNSBL services and I don't have them marked as active in the configuration. This would be correct, yes? Meaning, I'm getting the GEOIP blocking so that's working, I'm just not able to start the service because I don't have DNSBL active.
-
@j-lanham said in PFBlockerNG Webserver not running.:
pfBlockerNG DNSBL Web Serve
Didn't saw that :
of do you use the ancient pfBlockerNG ?
You right, the pfBlockerNG DNSBL Web Server is used - or actually was used - to show the LAN network user a page that a host name was DNSBL.
This worked well for http sites (not https). -
@gertjan I am using the current version of the pfBlockerNG package in the package manager. 2.1.4_26. It's the only pfblocker non-development package in the package manager. And, that's the only service showing in the service status.
-
@j-lanham said in PFBlockerNG Webserver not running.:
I am using the current version of the pfBlockerNG package in the package manager. 2.1.4_26. It's the only pfblocker non-development package in the package manager. And, that's the only service showing in the service status.
I know it's confusing but the 2.1.4_26 version that you are using is considered opsolete. It has not had any further development for a very long time. The pfBlockerNG-devel version is now considered the stable version and is recommended for production use.
The new version displays these 2 services in the dashboard:
The top service is whether or not the DNSBL is enabled (Firewall/pfBlockerNG/DNSBL/Enable DNSBL). The bottom service is whether or not pfblocker is enabled (Firewall/pfBlockerNG/General/pfblockerNG Enable).
-
@dma_pf Then you also know what my next question is going to be. Why is it marked devel if it's the latest production version?
-
@j-lanham I said it's confusing...lol! But it's a pretty well known issue on these forums and the developer of the package just hasn't changed the nomenclature yet.....for whatever reasons. The developer version has been considered stable for more than a year now....probably even longer.
-
@dma_pf Well the least they could do is mark it in the comments on the packages.
-
@j-lanham I agree with you. I do recommend updating to the devel version. It is way more advanced. It has a new python implementation that is much more robust and way less memory intensive.
-
@dma_pf What's the best way to uninstall the current version and install the correct version? I tried installing it on my home version and the DHCP server went nuts. Uninstall, reboot, then install the devel version?
-
@j-lanham said in PFBlockerNG Webserver not running.:
What's the best way to uninstall the current version and install the correct version? I tried installing it on my home version and the DHCP server went nuts. Uninstall, reboot, then install the devel version?
It was a long time ago that I made the switch and my memory is a bit foggy. To the best of my memory I just installed the devel version. But doing a complete uninstall would not be a bad way to do it either. Just make sure that you do a full backup of your complete system first. And before uninstalling or doing an update of the current version make sure that you have the following enabled in the pfblocker settings:
There is an issue with DHCP in the devel version. Once you update you should switch this setting off in DNS Resolver settings:
If you do have specific clients that you need to register in DNS assign them a static IP address and enable this setting in DNS Resolver: