Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    DisconnectAds, DisconnectTracking and DNSBL_Malicious - D_Me_Malw

    Scheduled Pinned Locked Moved pfBlockerNG
    5 Posts 2 Posters 1.0k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • QinnQ
      Qinn
      last edited by Qinn

      Above fail to download, I have looked at the /var/log/pfblockerng/erros.log, but could not find an explanation.
      Whitelisted the link
      0_1534082507246_report.png
      but it didn't help

      Resolving gave me:

      host -t A s3.amazonaws.com/lists.disconnect.me/simple_ad.txt
Host s3.amazonaws.com/lists.disconnect.me/simple_ad.txt not found: 3(NXDOMAIN)

      I can access the link when not using pfblockerNG , so the site is not down, so what am I overlooking?

      btw at the moment I cannot change my signature, but I am using pfBlockerNG-devel 2.2.1!

      https://forum.netgate.com/topic/133713/signature-feature

      Cheers Qinn

      Hardeware: Intel(R) Celeron(R) J4125 CPU @ 2.00GHz 102 GB mSATA SSD (ZFS)
      Firmware: Latest-stable-pfSense CE (amd64)
      Packages: pfBlockerNG devel-beta (beta tester) - Avahi - Notes - Ntopng - PIMD/udpbroadcastrelay - Service Watchdog - System Patches

      1 Reply Last reply Reply Quote 0
      • RonpfSR
        RonpfS
        last edited by RonpfS

        Change the State from ON to FLEX.

        BTW the cmd is :

        host -t A s3.amazonaws.com

s3.amazonaws.com is an alias for s3-1.amazonaws.com.
s3-1.amazonaws.com has address 52.216.160.157

        DId you whitelist using the Alerts tab? If not, you also have to whitelist the CNAME s3-1.amazonaws.com

        dig s3.amazonaws.com

; <<>> DiG 9.12.1 <<>> s3.amazonaws.com
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 46608
;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 4, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;s3.amazonaws.com.		IN	A

;; ANSWER SECTION:
s3.amazonaws.com.	789	IN	CNAME	s3-1.amazonaws.com.
s3-1.amazonaws.com.	5	IN	A	54.231.113.208

;; AUTHORITY SECTION:
s3-1.amazonaws.com.	1617	IN	NS	ns-1084.awsdns-07.org.
s3-1.amazonaws.com.	1617	IN	NS	ns-1726.awsdns-23.co.uk.
s3-1.amazonaws.com.	1617	IN	NS	ns-482.awsdns-60.com.
s3-1.amazonaws.com.	1617	IN	NS	ns-782.awsdns-33.net.

;; Query time: 30 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Sun Aug 12 12:02:46 EDT 2018
;; MSG SIZE  rcvd: 217

        2.4.5-RELEASE-p1 (amd64)
        Intel Core2 Quad CPU Q8400 @ 2.66GHz 8GB
        Backup 0.5_5, Bandwidthd 0.7.4_4, Cron 0.3.7_5, pfBlockerNG-devel 3.0.0_16, Status_Traffic_Totals 2.3.1_1, System_Patches 1.2_5

        1 Reply Last reply Reply Quote 1
        • QinnQ
          Qinn
          last edited by Qinn

          @ronpfs said in DisconnectAds, DisconnectTracking and DNSBL_Malicious - D_Me_Malw:

          host -t A s3.amazonaws.com

          Thanks @RonpfS for your support, your right, duhhh

          host -t A s3.amazonaws.com
s3.amazonaws.com has address 10.10.10.1

          ...and as the VIP comes up it's being blocked

          No I did not whitelist using the Alers tab,

          0_1534093779386_whitelist.png

          Hardeware: Intel(R) Celeron(R) J4125 CPU @ 2.00GHz 102 GB mSATA SSD (ZFS)
          Firmware: Latest-stable-pfSense CE (amd64)
          Packages: pfBlockerNG devel-beta (beta tester) - Avahi - Notes - Ntopng - PIMD/udpbroadcastrelay - Service Watchdog - System Patches

          RonpfSR 1 Reply Last reply Reply Quote 0
          • RonpfSR
            RonpfS @Qinn
            last edited by

            @qinn said in DisconnectAds, DisconnectTracking and DNSBL_Malicious - D_Me_Malw:

            No I did not whitelist using the Alers tab

            So you need to also put s3.amazonaws.com in the Whitelist, then run a Force Reload DNSBL.

            2.4.5-RELEASE-p1 (amd64)
            Intel Core2 Quad CPU Q8400 @ 2.66GHz 8GB
            Backup 0.5_5, Bandwidthd 0.7.4_4, Cron 0.3.7_5, pfBlockerNG-devel 3.0.0_16, Status_Traffic_Totals 2.3.1_1, System_Patches 1.2_5

            1 Reply Last reply Reply Quote 0
            • QinnQ
              Qinn
              last edited by

              @ronpfs said in DisconnectAds, DisconnectTracking and DNSBL_Malicious - D_Me_Malw:

              host -t A s3.amazonaws.com

              Thanks Ronpfs it did the trick

                host -t A s3.amazonaws.com
s3.amazonaws.com is an alias for s3-1.amazonaws.com.
s3-1.amazonaws.com has address 54.231.33.202

              Did not new the command dig (domain information groper) thanks 👍

              Hardeware: Intel(R) Celeron(R) J4125 CPU @ 2.00GHz 102 GB mSATA SSD (ZFS)
              Firmware: Latest-stable-pfSense CE (amd64)
              Packages: pfBlockerNG devel-beta (beta tester) - Avahi - Notes - Ntopng - PIMD/udpbroadcastrelay - Service Watchdog - System Patches

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.