pfBlockerNG feed management very slow
-
I don't know if this is a problem with pfBlockerNG-devel 3.2.0 or FreeBSD 14, but seems like it is a side effect of the latter.
On Netgate 6100 and with 22.05-RELEASE Firewall/pfBlockerNG/Update Force Reload works fast (pfBlockerNG-devel 3.1.0_11), but with 23.01-RC it takes hours to complete. Actually I didn't have patience to wait for it to complete and went back to 22.05-RELEASE.
-
@pfsjap Can't confirm this for me.
-
@mrsunfire For you the performance is about the same as in 22.05?
-
@pfsjap Exactly.
-
@mrsunfire Ok, thanks. Will try again and this time also take times for reload with 22.05 and 23.1.
-
@mrsunfire Now on 22.05 force reload takes about 8 minutes, but on 23.1 I haven't had a chance to get timing yet, because after upgrade and package post-install scripts pfBlocker is still downloading feeds.
Does this seem normal to you, processing of this single feed taking about 10 minutes?
Oneoffdallas_DoH ] Downloading update [ 02/5/23 18:25:11 ] .. 200 OK. Whitelist: dns.google.com|doh.dns.apple.com|google-public-dns-a.google.com|google-public-dns-b.google.com|mask-h2.icloud.com|mask.icloud.com| ---------------------------------------------------------------------- Orig. Unique # Dups # White # TOP1M Final ---------------------------------------------------------------------- 278 275 13 6 0 256 ---------------------------------------------------------------------- [ TheGreatWall_DoH ] Downloading update [ 02/5/23 18:35:21 ] .. 200 OK. -
@pfsjap try turning off wildcard/TLD option:
https://forum.netgate.com/topic/177504/v-3-2-0-with-pfsense-23-01-rc-20230202/13 -
@steveits I don't have wildcard TLD option enabled, but applied the patch.
The cron job is still running and there is no clean way to stop it. Can I just kill it or would it be better to reboot?
-
@steveits Thank you, reloading much faster now.