Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    IP-Blocklist

    Scheduled Pinned Locked Moved pfSense Packages
    496 Posts 86 Posters 496.9k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      tommyboy180
      last edited by

      It's the same format as the blacklist.```
      DESCRIPTION:xxx.xxx.xxx.xxx-xxx.xxx.xxx.xxx

      Example:```
      Facebook:66.220.144.0-66.220.159.255 
      

      Store the whiltelist as a .txt on a webserver or the pfsense box and add it.

      -Tom Schaefer
      SuperMicro 1U 2X Intel pro/1000 Dual Core Intel 2.2 Ghz - 2 Gig RAM

      Please support pfBlocker | File Browser | Strikeback

      1 Reply Last reply Reply Quote 0
      • S
        slagr
        last edited by

        I have read all thread regarding to ipblocklist package, but didn't find the solution for the issue appeared some time here.

        Have 2 pfsense boxes 2.0 and 1.2.3. Installed on both ipblocklist package. On 1.2.3 it works just fine, on 2.0 I got this error:

        Current Status = NOT running
        /tmp/rules.debug:31: Rules must be in order: options, normalization, queueing, translation, filtering
        You are blocking 0 Networks/IPs

        I don't know how to get that fixed, as I'm not a bsd expert. I deinstalled the package, rebooted, installed it back - got the same result.
        Any advise to right direction of getting it working to pfsense 2.0 ?

        Thanks.

        1 Reply Last reply Reply Quote 0
        • T
          tommyboy180
          last edited by

          @slagr:

          I have read all thread regarding to ipblocklis package, but didn't find the solution for the issue appeared some time here.

          Have 2 pfsense boxes 2.0 and 1.2.3. Installed on both ipblocklist package. On 1.2.3 it works just fine, on 2.0 I got this error:

          Current Status = NOT running
          /tmp/rules.debug:31: Rules must be in order: options, normalization, queueing, translation, filtering
          You are blocking 0 Networks/IPs

          I don't know how to get that fixed, as I'm not a bsd expert. I deinstalled the package, rebooted, installed it back - got the same result.
          Any advise to right direction of getting it working to pfsense 2.0 ?

          Thanks.

          Try rebooting. If that doesn't work then list your installed packages.

          -Tom Schaefer
          SuperMicro 1U 2X Intel pro/1000 Dual Core Intel 2.2 Ghz - 2 Gig RAM

          Please support pfBlocker | File Browser | Strikeback

          1 Reply Last reply Reply Quote 0
          • S
            slagr
            last edited by

            @tommyboy180:

            Try rebooting. If that doesn't work then list your installed packages.

            Thanks Tom,

            I tried to reboot as I stated in my post. Removed, rebooted, installed back - the same results. Did a few times.

            Here is my installed packages list (a lot of them are not relevant to the problem I think):

            GeoIP-1.4.8_1                                                                                                                                                
            .. list of system packages was cut …
            xproto-7.0.22

            1 Reply Last reply Reply Quote 0
            • T
              tommyboy180
              last edited by

              Sorry I meant to just list your installed pfsense packages.

              -Tom Schaefer
              SuperMicro 1U 2X Intel pro/1000 Dual Core Intel 2.2 Ghz - 2 Gig RAM

              Please support pfBlocker | File Browser | Strikeback

              1 Reply Last reply Reply Quote 0
              • S
                slagr
                last edited by

                @tommyboy180:

                Sorry I meant to just list your installed pfsense packages.

                Bandwithd, Cron, IP-Blocklist, snort, RRD Summary.

                1 Reply Last reply Reply Quote 0
                • S
                  slagr
                  last edited by

                  @slagr:

                  @tommyboy180:

                  Sorry I meant to just list your installed pfsense packages.

                  Bandwithd, Cron, IP-Blocklist, snort, RRD Summary.

                  Anyone can advise of what's wrong with that setup ?  We run pfsense 2.0. Reboot didn't help. Thanks.

                  1 Reply Last reply Reply Quote 0
                  • T
                    tommyboy180
                    last edited by

                    Sorry. I have plans to take a look at it. My work is undergoing an inspection that takes weeks so my priorities have temporarily shifted during this time. Hopefully I can take a look at it soon.

                    -Tom Schaefer
                    SuperMicro 1U 2X Intel pro/1000 Dual Core Intel 2.2 Ghz - 2 Gig RAM

                    Please support pfBlocker | File Browser | Strikeback

                    1 Reply Last reply Reply Quote 0
                    • marcellocM
                      marcelloc
                      last edited by

                      @firbc:

                      Hi,

                      is there any why to allow connection to blocked IP's on port 80? And if there is any way to manualy add my own IP's to whitelist? Let says that I like to unlock only one specific IP which is in blocklist.

                      This feature is implemented in pfBlocker package.

                      You can assign lists to populate an alias and then create your own rules if you want.

                      Treinamentos de Elite: http://sys-squad.com

                      Help a community developer! ;D

                      1 Reply Last reply Reply Quote 0
                      • marcellocM
                        marcelloc
                        last edited by

                        @slagr:

                        I have read all thread regarding to ipblocklist package, but didn't find the solution for the issue appeared some time here.

                        Have 2 pfsense boxes 2.0 and 1.2.3. Installed on both ipblocklist package. On 1.2.3 it works just fine, on 2.0 I got this error:

                        Current Status = NOT running
                        /tmp/rules.debug:31: Rules must be in order: options, normalization, queueing, translation, filtering
                        You are blocking 0 Networks/IPs

                        I don't know how to get that fixed, as I'm not a bsd expert. I deinstalled the package, rebooted, installed it back - got the same result.
                        Any advise to right direction of getting it working to pfsense 2.0 ?

                        Thanks.

                        Uninstall ipblocklist on 2.0 and try pfBlocker package.

                        Treinamentos de Elite: http://sys-squad.com

                        Help a community developer! ;D

                        1 Reply Last reply Reply Quote 0
                        • marcellocM
                          marcelloc
                          last edited by

                          Level1 list does not looks like bad guys, why its blocked by default?

                          Treinamentos de Elite: http://sys-squad.com

                          Help a community developer! ;D

                          1 Reply Last reply Reply Quote 0
                          • T
                            tommyboy180
                            last edited by

                            I added the level1 list to demo the syntax of the URL. I constantly get questions on the forum why a URL isn't working and it's always because it's not the direct URL. Adding this as default has helped cut down on those problems.

                            If we can use wget or some option with fetch to follow the URL then this problem will be a thing of the past. For now though, the direct URL is required.

                            -Tom Schaefer
                            SuperMicro 1U 2X Intel pro/1000 Dual Core Intel 2.2 Ghz - 2 Gig RAM

                            Please support pfBlocker | File Browser | Strikeback

                            1 Reply Last reply Reply Quote 0
                            • R
                              rob.janzen
                              last edited by

                              I've got a quick question about the package.  Does IP Blocklist auto-update the block lists?  Other than that, thanks for a great package!

                              1 Reply Last reply Reply Quote 0
                              • marcellocM
                                marcelloc
                                last edited by

                                If you are using pfsense 2.0,

                                pfblocker is joining countryblock and ipblocklist.

                                list update will be released very soon on this new package.

                                Treinamentos de Elite: http://sys-squad.com

                                Help a community developer! ;D

                                1 Reply Last reply Reply Quote 0
                                • S
                                  stormeporm
                                  last edited by

                                  I've just updated from pfsense 2.0 to 2.01. Now ipblocklist isn't working any more.
                                  No problem because i've installed pfblocker.
                                  But there's still a link to ipblocklist in the menu. How do I remove it and how do I now for sure ipblock list is uninstalled.
                                  Thanx in advance

                                  1 Reply Last reply Reply Quote 0
                                  • RonpfSR
                                    RonpfS
                                    last edited by

                                    Uninstall pfBlocker … maybe Ipblocklist will go away

                                    2.4.5-RELEASE-p1 (amd64)
                                    Intel Core2 Quad CPU Q8400 @ 2.66GHz 8GB
                                    Backup 0.5_5, Bandwidthd 0.7.4_4, Cron 0.3.7_5, pfBlockerNG-devel 3.0.0_16, Status_Traffic_Totals 2.3.1_1, System_Patches 1.2_5

                                    1 Reply Last reply Reply Quote 0
                                    • marcellocM
                                      marcelloc
                                      last edited by

                                      @RonpfS:

                                      Uninstall pfBlocker … maybe Ipblocklist will go away

                                      it will not.  ;)

                                      Clean ipblocklist table on diagnostics -> tables.

                                      Treinamentos de Elite: http://sys-squad.com

                                      Help a community developer! ;D

                                      1 Reply Last reply Reply Quote 0
                                      • S
                                        stormeporm
                                        last edited by

                                        @marcelloc:

                                        @RonpfS:

                                        Uninstall pfBlocker … maybe Ipblocklist will go away

                                        it will not.  ;)

                                        Clean ipblocklist table on diagnostics -> tables.

                                        there is no ipblocklist table in tables.
                                        Does that mean ipblocklist is gone?

                                        And how do I remove the ipblocklist link from the menu?

                                        1 Reply Last reply Reply Quote 0
                                        • marcellocM
                                          marcelloc
                                          last edited by

                                          You may need to edit config.xml file (with care) and remove ipblocklist entries and reboot.

                                          Treinamentos de Elite: http://sys-squad.com

                                          Help a community developer! ;D

                                          1 Reply Last reply Reply Quote 0
                                          • S
                                            stormeporm
                                            last edited by

                                            Thanx that did the trick  :)

                                            1 Reply Last reply Reply Quote 0
                                            • First post
                                              Last post
                                            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.