adult content
-
@reynold You're probably hitting a different resource limit.
Check System > Advanced and click on "Firewall & NAT" and look at your "Firewall Maximum Table Entries" value. Mine is set to 2000000
-
@reynold You can download the file from pfBlocker’s feed page. I know it takes over 1 GB disk space for pfSense to extract, but I don’t know the actual disk or RAM usage.
-
@rcoleman-netgate
Mine is set also to 2000000 -
I'm using steven black lists.
It seems working.
But I'm not able to block pornhub.
Could you help me?
I have already tried with custom blacklist but it did not work -
@reynold
FWIW, I use the UT1 adult list and that doesn't block Pornhub either, so it's not the answer. But if you want to try it, I would disable your other lists, start with the UT1 adult list and see how memory looks, then start adding other UT1 categories and other you want and note the effects on memory, That said I run UT1, the old Shallalist and quite a few others and my memory shows only 7% of 16GB. -
@provels ok. I will try.
But is there a way to block pornhub?
Why is that not blocked? -
@reynold said in adult content:
But is there a way to block pornhub?
Block ASNs.
https://www.peeringdb.com/asn/55222 that is the parent company's ASN. Aylo, née MindGeek.
-
@reynold said in adult content:
block pornhub
Alternately, create hostname overrides for pornhub.com, www.pornhub.com, etc. pointing to 127.0.0.1 or some nonexistent IP.
Test with dig or nslookup.
Keep in mind any DNS based blocking assumes DNS over HTTPS is not being used. Here is a writeup of how to block DoH, in the pfSense PDF:
https://github.com/jpgpi250/piholemanual -
These lists are pretty good:
https://github.com/StevenBlack/hosts
You can select only porn if you want.
-
@mcury
I'm using that lists but i can not block pornhub -
@reynold said in adult content:
I'm using that lists but i can not block pornhub
hm, that is weird because I can see pornhub in that list..
Are you sure sure that the hosts in your network are using Pfsense's DNS server?
Nothing using DOT or DOH to bypass the DNS server? -
@rcoleman-netgate
It can be a solution but ASN blocking isn't dangerous?.
Unless its an ASN wholly owned by the public entity (facebook,google,nextlix) I could blackholing lots of sites -
@mcury
I'm sure
I'm trying myself from lan
I can block many porn sites but pornhub seems to be impossible
Nslookup shows thar pornhub.com is correctly resolved.
If i try to resolve youporn it gives me 10.10.10.1 and that's ok. In fact it's blocked -
@reynold In this case... Aylo's ONLY business is PornHub. Blocking their ASN should be "safe"
-
@reynold said in adult content:
I can block many porn sites but pornhub seems to be impossible
If you are on Windows, try this: ipconfig /flushdns and test again, just to make sure that cache is not the problem.
If the problem persists after that, you could create a custom list to include along with the others you already have.
As far as I remember, you can create that list in a .txt file and put somewhere.
The downside of this is that you would probably need to enable TLD which increases the memory usage by a lot.. -
@mcury cache is not the problem and i enabled tld already.
I do not know how to create custom txt list and where to puts -
It seems that you don't need to create a .txt file, try like this:
https://forum.netgate.com/post/834813 -
@mcury
I can not find that GUI, i think it's an older version -
@reynold said in adult content:
I can not find that GUI, i think it's an older version
if you are running an older release of pfBlocker you should update to current.
-
@reynold said in adult content:
I can not find that GUI, i think it's an older version
Remember to set Action to Unbound and run update in pfB.
