TDL option in pfBlockerNG makes reload run for ever
-
When I have Wildcard Blocking (TLD) on in pfBlockerNG and run a reload I get it never gets finished.
It just hangs there with high CPU load on "grep -vF -f /tmp/dnsbl_tld_remove /tmp/pfbtemp3_71192".
With the 22.05 version this was never a problem.....
Assembling DNSBL database...... completed [ 01/12/23 18:29:05 ]
Adding DNSBL Unbound mode (Resolver adv. setting)
TLD:
Blocking full TLD/Sub-Domain(s)... |cm|ml|fit|live|beauty|top|su|gq|monster|surf|party|click|link|gdn|study|men| completed
TLD analysis....xxxxxxxxxxx completed [ 01/12/23 18:30:10 ]** TLD Domain count exceeded. [ 400000 ] All subsequent Domains listed as-is **
TLD finalize.
....PID USERNAME PRI NICE SIZE RES STATE C TIME WCPU COMMAND
41008 root 133 0 479M 434M CPU1 1 14:31 96.78% grep -vF -f /tmp/dnsbl_tld_remove /tmp/pfbtemp3_71192 -
Can also confirm I experienced this on 23.01.r.20230202.0019 / pfBlockerNG-devel 3.2.0.
This was prior to upgrading to the final RC version 23.01.r.20230202.1645
It eventually finished just took hours instead of the usual 1-2 mins.
-
E emikaadeo referenced this topic on
-
E emikaadeo referenced this topic on
-
Maybe @BBcan177 will have a time to look into this.
I will upgrade 22.05-RELEASE (amd64) to 23.01-RC today and see if this will show up on my box. -
I am now unsure if the TLD finalize actually worked as I don't recall the DNSBL count being so high in the widget. I could swear it used to be the final number (445047) and not the original (999933) - but I am not 100% sure.
-
See https://forum.netgate.com/topic/177504/v-3-2-0-with-pfsense-23-01-rc-20230202/9
"If you can easily reproduce this, try the following patch in the system patches package"
