Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Confusing results and basic whitelist question

    Scheduled Pinned Locked Moved pfBlockerNG
    3 Posts 2 Posters 276 Views 2 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • H Offline
      homealone
      last edited by

      Hi all,
      I was playing with a Python package, yfinance and my first attempt to invoke it resulted in an SSL failure (self-signed-cert). I eventually figured out that it was pfBlockerNG DNSBL stopping it. (When I try and ping fc.yahoo.com I get replies from 10.10.10.1, the default DNSBL redirect target).
      What's really confusing though is that when I go to https://fc.yahoo.com/ in Firefox, I get redirected to www.yahoo.com (which kind of makes sense if fc.yahoo.com is just an api server). I don't understand why I'm not seeing the same DNSBL page I get if I try and curl -k https://fc.yahoo.com/.
      At any rate, I figured that just adding fc.yahoo.com to the DNSBL whitelist would fix my problem, but of course it didn't. Do I have to do anything special to update the whitelist or is there another part of the DNSBL process that is blocking it anyway? I just added "fc.yahoo.com" at the bottom of the list on its own line.
      Doing a dig on Google gets me a cname with multiple IP addresses with 1 minute TTLs, so I don't think it's going to be feasible to allow IP addresses.

      TIA,
      Dave

      S 1 Reply Last reply Reply Quote 0
      • S Offline
        SteveITS Rebel Alliance @homealone
        last edited by

        @homealone The browser may be caching the redirect. Try a private window or different browser.

        After making changes you need to run an update in pfB.

        Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
        When upgrading, allow 10-15 minutes to reboot, or more depending on packages, and device or disk speed.
        Upvote 👍 helpful posts!

        H 1 Reply Last reply Reply Quote 0
        • H Offline
          homealone @SteveITS
          last edited by

          @SteveITS Thanks. I meant to put in the original post that I forced an update after I made the change.

          A couple of days later, the white list appears to be working.

          Thanks,
          Dave

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.