Does pfsense 2.5.2 add its own DNSBL whitelist ?
-
I just noticed that on the Firewall-->pfBlockerNG-->DNSBL there is a whitelist that I had nothing to do with
---> /pfblockerng/pfblockerng_dnsbl.php Im using pfsense 2.5.2It shows the following in the DNSBL Whitelist section
Does anyone know why the whitelist has been created ? I don't recall adding it
Thanks, Parrys3.amazonaws.com
s3-1.amazonaws.com # CNAME for (s3.amazonaws.com)
.github.com
.githubusercontent.com
github.map.fastly.net # CNAME for (raw.githubusercontent.com)
.gitlab.com
.apple.com
.sourceforge.net
.fls-na.amazon.com # alexa
.control.kochava.com # alexa 2
.device-metrics-us-2.amazon.com # alexa 3
.amazon-adsystem.com # amazon app ads
.px.moatads.com # amazon app 2
.wildcard.moatads.com.edgekey.net # CNAME for (px.moatads.com)
.e13136.g.akamaiedge.net # CNAME for (px.moatads.com)
.secure-gl.imrworldwide.com # amazon app 3
.pixel.adsafeprotected.com # amazon app 4
.anycast.pixel.adsafeprotected.com # CNAME for (pixel.adsafeprotected.com)
.bs.serving-sys.com # amazon app 5
.bs.eyeblaster.akadns.net # CNAME for (bs.serving-sys.com)
.bsla.eyeblaster.akadns.net # CNAME for (bs.serving-sys.com)
.adsafeprotected.com # amazon app 6
.anycast.static.adsafeprotected.com # CNAME for (static.adsafeprotected.com)
google.com
www.google.com
youtube.com
www.youtube.com
youtube-ui.l.google.com # CNAME for (youtube.com)
stackoverflow.com
www.stackoverflow.com
dropbox.com
www.dropbox.com
www.dropbox-dns.com # CNAME for (dropbox.com)
.adsafeprotected.com
control.kochava.com
secure-gl.imrworldwide.com
pbs.twimg.com # twitter images
www.pbs.twimg.com # twitter images
cs196.wac.edgecastcdn.net # CNAME for (pbs.twimg.com)
cs2-wac.apr-8315.edgecastdns.net # CNAME for (pbs.twimg.com)
cs2-wac-us.8315.ecdns.net # CNAME for (pbs.twimg.com)
cs45.wac.edgecastcdn.net # CNAME for (pbs.twimg.com) -
Yes, pfBlockerNG adds that by default to prevent things being incorrectly blocked by blacklist updates.
That's a very old version of the package in a very old version of pfSense though. You should upgrade.
Steve
-
@stephenw10
I would use later versions except that the later versions dont provide ASN block. There is probably a method of doing that but this version finds the ASN numbers by simply entering the company name. Thanks for bothering to reply. -
@parry yes it does
-
@SteveITS The ASN selection appears in the pfBlockerNG package. If I update it to 2.6, the ASN option disappears in the PfBlockerNG installation. That's why I have not updated. Did I misunderstand you suggestion ? Thanks again Steve. Parry
-
@parry Well I don't know about 2.6 but it's in the package for 23.09 so I assume it would be in 2.7.x:
You might be looking at pfBlockerNG vs pfBlockerNG-devel? -devel was moved/copied into non-devel I think when 23.01 was released, so they are identical now.
