Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Is it possible to show the content/ip of a host alias?

    Scheduled Pinned Locked Moved Firewalling
    7 Posts 3 Posters 97 Views 3 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S Offline
      slu
      last edited by

      Hi,

      is it possible to look whats inside the host alias (IPs) on the terminal?

      pfSense Gold subscription

      johnpozJ S 2 Replies Last reply Reply Quote 0
      • johnpozJ Online
        johnpoz LAYER 8 Global Moderator @slu
        last edited by

        @slu simple way would be to just cat your /tmp/rules.debug, the user aliases will be listed out in there

        example:

        # User Aliases 
80_443_22 = "{   80  443  22  8080 }"
table <AccessPoints> {   192.168.2.2  192.168.2.3  192.168.2.4 } 
AccessPoints = "<AccessPoints>"
table <alexas> {   192.168.4.76  192.168.4.77  192.168.4.78  192.168.4.79  192.168.4.80 } 
alexas = "<alexas>"

        An intelligent man is sometimes forced to be drunk to spend time with his fools
        If you get confused: Listen to the Music Play
        Please don't Chat/PM me for help, unless mod related
        SG-4860 25.07 | Lab VMs 2.8, 25.07

        1 Reply Last reply Reply Quote 1
        • S Offline
          SteveITS Rebel Alliance @slu
          last edited by

          @slu You can run:

          pfctl -T show -t aliasname

          Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
          When upgrading, allow 10-15 minutes to reboot, or more depending on packages, and device or disk speed.
          Upvote ๐Ÿ‘ helpful posts!

          S 1 Reply Last reply Reply Quote 1
          • S Offline
            slu @SteveITS
            last edited by slu

            Thank you @johnpoz and @SteveITS for the super fast reply.

            pfSense Gold subscription

            S 1 Reply Last reply Reply Quote 1
            • S Offline
              slu @slu
              last edited by slu

              Interesting, in my alias is a FQDN but the IP is not in the alias if I check it with
              pfctl -T show -t myaliasname

              Than I tried a DNS lookup in the web gui, works (A record).
              Now I created a new test alias with only this single FQDN and pfctl -T show -t testaliasname show not one entry.

              Do someone saw such a behavior? No wonder my firewall rule don't work...

              pfSense Gold subscription

              S 1 Reply Last reply Reply Quote 0
              • S Offline
                SteveITS Rebel Alliance @slu
                last edited by

                @slu like this?
                https://forum.netgate.com/topic/196927/filterdns-has-stopped-resolving-hostnames-in-firewall-aliases

                Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
                When upgrading, allow 10-15 minutes to reboot, or more depending on packages, and device or disk speed.
                Upvote ๐Ÿ‘ helpful posts!

                S 1 Reply Last reply Reply Quote 0
                • S Offline
                  slu @SteveITS
                  last edited by

                  @SteveITS yes it look like, but I have actual filterdns log entries im my log.

                  pfSense Gold subscription

                  1 Reply Last reply Reply Quote 0
                  • First post
                    Last post
                  Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.