Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Bypass pfBlocker for Clients

    Scheduled Pinned Locked Moved pfBlockerNG
    6 Posts 4 Posters 1.1k Views 3 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • H Offline
      Hans 1
      last edited by

      I'm trying to bypass a few Clients from going thru pfBlocker. I looked at Topic "Bypassing DNSBL for specific IPs", "Advice - Allowing client to bypass pfblocker-ng" and "Bypass pfblockerng for certain machines" and non work. I have to say the steps are all complicated, with multiple chances in multiple places that don't make sense. My background is Linux +25 years and usually exceptions are handled via a conf file. Is there an easier no brain-er option or one that works without going thru all sorts of hurdles, I just want to "get-her done".

      S 1 Reply Last reply Reply Quote 0
      • S Offline
        SteveITS Galactic Empire @Hans 1
        last edited by

        @hans-1 If you expand the "Python Group Policy" section, you can add IPs to "Bypass IPs." Keep in mind IPv6 devices often use temporary IPs so it's not perfect.

        Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
        When upgrading, allow 10-15 minutes to reboot, or more depending on packages, CPU, and/or disk speed.
        Upvote 👍 helpful posts!

        Bob.DigB 1 Reply Last reply Reply Quote 0
        • Bob.DigB Offline
          Bob.Dig LAYER 8 @SteveITS
          last edited by Bob.Dig

          @steveits It is not working here, so might be a general bug.


          Screenshot 2022-10-08 202910.png

          M S 2 Replies Last reply Reply Quote 0
          • M Offline
            mcury Rebel Alliance @Bob.Dig
            last edited by

            @bob-dig Python bypass is working fine here.
            22.05 pfblockerng 3.1.0_4 with python mode enabled

            dead on arrival, nowhere to be found.

            1 Reply Last reply Reply Quote 0
            • S Offline
              SteveITS Galactic Empire @Bob.Dig
              last edited by

              @bob-dig Did you run an update after adding the IP? IPv6 isn’t being used? Flush any DNS cache on the client?

              Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
              When upgrading, allow 10-15 minutes to reboot, or more depending on packages, CPU, and/or disk speed.
              Upvote 👍 helpful posts!

              Bob.DigB 1 Reply Last reply Reply Quote 0
              • Bob.DigB Offline
                Bob.Dig LAYER 8 @SteveITS
                last edited by

                @steveits said in Bypass pfBlocker for Clients:

                @bob-dig Did you run an update after adding the IP? IPv6 isn’t being used? Flush any DNS cache on the client?

                Yes to all of that.

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post
                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.