Country Block
-
I'm using pFsense 1.2.3 release and I'm getting this error:
Current Status = NOT running
/tmp/rules.debug:134: rule label too long (max 63 chars)
You are blocking 0 NetworksI got all country blocked except where I live. I am using the following packages:
- Dashboard
- Fit123
- Bandwidthd
- Rate
- Squid
Already uninstalled the package of CB and reinstaled, but I got the same error.
How many firewall entries do you have? Does it work for a little while after you reboot?
-
It's a fresh install… I only have 2 rules on LAN and other 2 rules on the WAN... After I reboot this message appears in the WEB as soon I open , so I think don't work for a litle while...
-
Try just selecting one country, commit, and then save/update. Reboot if you still have that error.
I suspect you should be able to get one country working to begin with. Since it's a fresh install I wonder if any of the other packages are messing with it. -
Unselect all countries and comited… Then I just select one and comited again... When i did this, i saw that the checkbox for "Enable" becomes unchecked... So, I checked the "Enable" box and saved... Then it start runing normaly... To test, I select another country, and comited... The "Enable" becomes uncheked again... I turnet on the CB again and was runing fine... Now I checked all countries that i wanted and comited... Again, the "Enable" becomes uncheked... I checked it and start normaly...
Current Status = Running
You are blocking 109524 Networks
Don't know what happening , because i tried do that befoure posting here...
Let's see if the BC works fine now!!
Tanks for your help and job!! Its a realy nice Package!!!
:D
-
FYI. I just upgraded my pf2.0 vm to RC1. I was having problems with b5 so I decided to update it. I reset pfsense to factory defaults from console and I noticed on the boot afterwards the the country block script was still present. I was not able to access the webgui to remove country block prior to upgrading.
After installing countryblock on the new build I get this.
/tmp/rules.debug:74 Cannot load "/usr/local/www/packages/countryblock/countries-white.txt" No such file or directory
I know this is no real big bug but I just thought you should know
-
I am having tons of issues with RC1 not related to CB. However, my system.log is reporting missing dependencies with RC1. I will look into this further and keep you updated.
-
I am having tons of issues with RC1 not related to CB. However, my system.log is reporting missing dependencies with RC1. I will look into this further and keep you updated.
I see a lot of packages that do the same thing. I'm not sure what generates that but ignoring those errors doen't hurt. Let me know if you narrow it down to something. I looked into it a while ago and came back empty handed. I would love to fix it if it's possible.
Thanks for the heads up! -
Country Block , blocked?
To help us defray burgeoning costs, we have temporarily suspended automated downloads of Access Control Lists. We would like to restore these or move to a members only delivery system. Please help us by donating now:
Does this affect your script? If I have to download manually, what format should I grab…
-
Country Block , blocked?
To help us defray burgeoning costs, we have temporarily suspended automated downloads of Access Control Lists. We would like to restore these or move to a members only delivery system. Please help us by donating now:
Does this affect your script? If I have to download manually, what format should I grab…
There is an updated countryblock package that I released several days ago. Update and it should work.
-
just updated to 0.2.0,
/usr/local/www/packages/countryblock/lists/countries.txt is 0 bytes
It says I have have 11 of 252 selected but 0 blocked, indicates it is running
-
just updated to 0.2.0,
/usr/local/www/packages/countryblock/lists/countries.txt is 0 bytes
It says I have have 11 of 252 selected but 0 blocked, indicates it is running
What pfsense version?
-
Sorry did not put that in the original message, well seasoned 1.2.3. Just did a reboot but no joy. countries.txt in the list folder still 0
-
That's really strange. Alright give me 5 min to check on my 1.2.3 test vm.
-
Anything look out of order?
-
That looks right. I just tested on my 1.2.3 VM. I uninstalled my CB package, rebooted, and then installed the package version 2.0. Make sure CIDR.tar.gz is downloaded during the install.
I checked Korea, committed, then checked enabled and hit Save/Update.
All worked fine. Try my method and let me know what happens.
-
Thanks, was just looking and first glance it appears that the fetch lines are commented out in countryblock.php
lunch time, brain food… tackle this after lunch
//Process each list URL, Extract, and put in DIR lists
exec("mkdir lists");
foreach ($lines as $line) {
//echo("fetch -o lists http://www.countryipblocks.net/e_country_data/{$line}_cidr.txt");
//Fetch countries from server
//exec("fetch -o lists/temp http://127.0.0.1//packages/countryblock/CIDR/{$line}_cidr.txt");
//Pull from local file since https or http on other ports may be used
exec("cat CIDR/{$line}_cidr.txt >> lists/countries.txt");
//exec("fetch -o lists/temp http://www.countryipblocks.net/e_country_data/{$line}_cidr.txt");
//Remove cat lists/temp since fetch is not used
//Thank you g4m3c4ck, 'He got a real pretty mouth ain't he', 1 Feb 2011
//exec("cat lists/temp >> lists/countries.txt");
$filename = basename($line);
//Extract list
//exec("gzip -d lists/$filename");
} -
The fetch was the old way to pull the country files directly from countryipblocks.net but that's what created the bandwidth problem for them.
So now the cat CIDR is the solution. It pulls the country ip blocks from a local file that it download during package install. That's why it's kind of weird it's not working for you since it's so simple.
-
Something must have been hanging around. Had to remove, then reinstall. Now have CIDR folder and have networks blocked.
Thanks for the help, its better help than we get around here for paid support…
-
HAHAHAHAHHAHAHAHAHAHAHAHAHAHAHAHAHA
:)
Something must have been hanging around. Had to remove, then reinstall. Now have CIDR folder and have networks blocked.
Thanks for the help, its better help than we get around here for paid support…
-
Something must have been hanging around. Had to remove, then reinstall. Now have CIDR folder and have networks blocked.
Thanks for the help, its better help than we get around here for paid support…
Well thank you for the compliment. I try to provide half decent support. Check out tomschaefer.org/pfsense
I created it to try to help more people that needed a way to directly contact me.