Country Block
-
Did you change mailserver software when changing bsd box?
Mailserver software…I didn't change anything on my server except the static IP so that it would reflect the new network. My server resides on Opt2. Was there a switch somewhere in the bsd box that I may have quite possibly overlooked? I did compare the two before switching them out however with all the details and human error it is quite possible.
Can you PM me the contents of /tmp/rules.debug Make sure countryblock is running before sending me the contents.
You can also email to me if you like. -
Well I plugged in the old bsd box and walla…not a piece of spam except three marked from the US. So I looked over everything and the only change I could see was the MAC address of the WAN which gave me a different IP so I cloned it to keep the old IP address and then I put the Server on LAN. We'll see what happens next.
UPDATE:
Well I got a ton of spam again. There must be some hidden change between the two as one blocks and the other doesn't. The CB, LAN, NAT, and Rules settings are all the same. -
Well I plugged in the old bsd box and walla…not a piece of spam except three marked from the US. So I looked over everything and the only change I could see was the MAC address of the WAN which gave me a different IP so I cloned it to keep the old IP address and then I put the Server on LAN. We'll see what happens next.
UPDATE:
Well I got a ton of spam again. There must be some hidden change between the two as one blocks and the other doesn't. The CB, LAN, NAT, and Rules settings are all the same.Can you zip the contents of /usr/local/www/packages/countryblock and email it to me. I will compare line by line and see what could have changed for you. Also email me your xml config. I want to replicate your issues in a virtual network over here. Your problem really intrigues me since I have no clue what the problem may be.
-
Hi everybody
First of all a great thank to Countryblock developers !
I have not understood what the email tab is used to ?
Therefore I have configured it.
SMTP auth no (All hosts on the lan can access the Postfix server)
SMTP security none
Host my_mail_server
Port 25
Username leave_blank
Password leave_blank
From email address my_own_address
To email address admin_address
Subject TestWhen I click "Save" I have a blank screen and my configuration is not saved when I come back to the email tab.
When I fill in username, password after saving I click "Test" and I get the following error message :
Warning: fsockopen(): php_network_getaddresses: getaddrinfo failed: hostname nor servname provided, or not known in /usr/local/www/packages/countryblock/class.smtp.php on line 122 Warning: fsockopen(): unable to connect to none://zimbra:25 in /usr/local/www/packages/countryblock/class.smtp.php on line 122 Mailer Error: SMTP Error: Could not connect to SMTP host.
I have the same error when I replace the name of my mail server with its IP address.
Any ideas ?
Anticipated thanks.
Best regards.
Bernard
-
Hi everybody
First of all a great thank to Countryblock developers !
I have not understood what the email tab is used to ?
Therefore I have configured it.
SMTP auth no (All hosts on the lan can access the Postfix server)
SMTP security none
Host my_mail_server
Port 25
Username leave_blank
Password leave_blank
From email address my_own_address
To email address admin_address
Subject TestWhen I click "Save" I have a blank screen and my configuration is not saved when I come back to the email tab.
When I fill in username, password after saving I click "Test" and I get the following error message :
Warning: fsockopen(): php_network_getaddresses: getaddrinfo failed: hostname nor servname provided, or not known in /usr/local/www/packages/countryblock/class.smtp.php on line 122 Warning: fsockopen(): unable to connect to none://zimbra:25 in /usr/local/www/packages/countryblock/class.smtp.php on line 122 Mailer Error: SMTP Error: Could not connect to SMTP host.
I have the same error when I replace the name of my mail server with its IP address.
Any ideas ?
Anticipated thanks.
Best regards.
Bernard
Bernard,
I believe this was addressed on page 20 as I had a similar problem…go back a few pages and you should find the answer. I'll let you know when I get to this point of pfsense.
Right now I succumbed to hitting the "Factory defaults" button but this time I am incrementally setting up pfsense. Only LAN and WAN are configured leaving OPT1,2,3,4,5 offline along with configuring the Aliases, NAT, and Rules. I installed CB and wow...not a single spam since setup last night. I'm leaning towards the conclusion that there was some odd switch flipped or forgotten on the last setup as it is working now, or so it seems. Tonight I will backup my current configuration and attempt a few more settings.
I know this has been mentioned before and I believe the reason it was mentioned not done was due to a certain clearance level was needed but having a log just for CB showing what has been blocked for x hours/days would be awesome if just to confirm that stuff is blocked and that nothing has gone array with the configuration. I know the System logs --> firewall are supposed to list something but I'm not familiar with deciphering what was blocked because of CB and what was for something else.
-
I cannot for the life of me KEEP countryblock running. I've been all over this forum trying to find a resolution that works. I've implemented cron jobs to restart the app, which it does, however it doesnt appear to truly be running as, even though I have block outbound checked, I can still connect to countries that are checked. Ive tried uninstalling every package I have, reinstalling CB, restarting the box PFsense is running on, everything I can possibly think of and yet after 5-15 minutes CB just stops working. I have to manually restart it, it works, then a few minutes later its not working again even though the logs say that it was found not running, then cron restarts it, but its not actually working. Sooo frustrating.
Can anyone help? What do I need to provide?
-
I had a similar problem myself and the outbound does work but what I found is that I had to make sure ALL the interfaces are selected and then go to:
/usr/local/www/packages/countryblock/interfaces.txt
delete any text in there and replace simply with "any" (no quotes).
-
Any ideas why Country Block doesn't start automatically after a system reboot? I'm running the embedded pfsense 2.0beta4 on an alix device. I have to go in and select enable after each reboot to start it.
Thanks.
-
I had a similar problem myself and the outbound does work but what I found is that I had to make sure ALL the interfaces are selected and then go to:
/usr/local/www/packages/countryblock/interfaces.txt
delete any text in there and replace simply with "any" (no quotes).
Thanks for the assistance! I checked that file and indeed 'any' is the only text in that file.
I uninstalled lightsquid thinking that perhaps it is causing the issue, considering I see a cronjob running a lightsquid script every 15 minutes. That did not work. For some reason, every 15 minutes it shuts down even though it appears to be running. Very odd.
-
@yaw:
Any ideas why Country Block doesn't start automatically after a system reboot? I'm running the embedded pfsense 2.0beta4 on an alix device. I have to go in and select enable after each reboot to start it.
Thanks.
Have you had any other issues with CB while using the 2.0 beta of pfsense? If not I may give the beta a shot since I cannot seem to resolve my current issues with CB on 1.23.
-
Yeah the email setting page doesn't work. I get a crazy long SSL error when I try and submit a test email. I figure I'll tackle that once I figure out how to start it automatically upon reboot.
-
Good luck mate.
FWIW it appears that either squid or a misconfiguration of squid is what was causing my issue. I removed squids cron jobs and uninstalled the package again, and now CB seems to stay running. Going to test for a day and see what happens. Hopefully I can figure out how to have both co-exist happily as I like squid.
-
Hi everybody
First of all a great thank to Countryblock developers !
I have not understood what the email tab is used to ?
Therefore I have configured it.
SMTP auth no (All hosts on the lan can access the Postfix server)
SMTP security none
Host my_mail_server
Port 25
Username leave_blank
Password leave_blank
From email address my_own_address
To email address admin_address
Subject TestWhen I click "Save" I have a blank screen and my configuration is not saved when I come back to the email tab.
When I fill in username, password after saving I click "Test" and I get the following error message :
Warning: fsockopen(): php_network_getaddresses: getaddrinfo failed: hostname nor servname provided, or not known in /usr/local/www/packages/countryblock/class.smtp.php on line 122 Warning: fsockopen(): unable to connect to none://zimbra:25 in /usr/local/www/packages/countryblock/class.smtp.php on line 122 Mailer Error: SMTP Error: Could not connect to SMTP host.
I have the same error when I replace the name of my mail server with its IP address.
Any ideas ?
Anticipated thanks.
Best regards.
Bernard
Bernard,
I believe this was addressed on page 20 as I had a similar problem…go back a few pages and you should find the answer. I'll let you know when I get to this point of pfsense.
Right now I succumbed to hitting the "Factory defaults" button but this time I am incrementally setting up pfsense. Only LAN and WAN are configured leaving OPT1,2,3,4,5 offline along with configuring the Aliases, NAT, and Rules. I installed CB and wow...not a single spam since setup last night. I'm leaning towards the conclusion that there was some odd switch flipped or forgotten on the last setup as it is working now, or so it seems. Tonight I will backup my current configuration and attempt a few more settings.
I know this has been mentioned before and I believe the reason it was mentioned not done was due to a certain clearance level was needed but having a log just for CB showing what has been blocked for x hours/days would be awesome if just to confirm that stuff is blocked and that nothing has gone array with the configuration. I know the System logs --> firewall are supposed to list something but I'm not familiar with deciphering what was blocked because of CB and what was for something else.
I have removed IP-Blocklist
I have enabled all interfaces
I have tested that from my PFSense box my mail server could be contactedNo success I have the same error : fsockopen(): php_network_getaddresses …
Any Idea
Best regards.
-
The email feature uses phpmailer which is separate from the countryblock package. If your having problems with email you should check to make sure your settings reflect what the mail provider requires. I do know it's really simple to get gmail on the email feature so please double check your settings.
-
Thanks for the tip. I'll look at that today. Any thoughts on the reboot problem?
-
@yaw:
Thanks for the tip. I'll look at that today. Any thoughts on the reboot problem?
Check that /usr/local/etc/rc.d/countryblock.sh exists. This is the script that starts the package on boot.
-
It exists. Any more ideas?
-
@yaw:
It exists. Any more ideas?
It sounds like something is changing your FW rules. You may have a package installed that is doing that.
I have extensively tested this package on pfsense 1.2.3 and I consider it stable. Try to eliminate packages or traffic shaping to see if that corrects the issue. -
It must be something to do with the 2.0 beta. I think you're right about the firewall rules. Whenever they change it kills country block. Something must be changing it after country block is running upon reboot.
No more time to work on it, I'll try again some other day.
Thanks!
-
I did some testing on 2.0BETA not that long ago. I was able to keep it running. I should be receiving a laptop here soon. When I get that I can conduct much better testing on the package and perhaps help keep it stable.