Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Whitelisting DNSBL in pfBlocker

    Scheduled Pinned Locked Moved pfBlockerNG
    6 Posts 3 Posters 1.3k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • G
      guardian Rebel Alliance
      last edited by

      Thanks @BBcan177 for all your great work on pfBlocker!

      I have set up a large number of lists, and there are a few entries in those lists that don't work for me that I want to override. Is there a way to do that?

      I looked around but all I could find was Bypassing DNSBL for specific IPs, and whitelisting IPs-nothing on preventing DNSBL entries from getting loaded in the Unbound DNSBL tables . (Maybe a good question to sticky?)

      Thanks in advance for any assistance.

      If you find my post useful, please give it a thumbs up!
      pfSense 2.7.2-RELEASE

      GrimsonG RonpfSR 2 Replies Last reply Reply Quote 0
      • GrimsonG
        Grimson Banned @guardian
        last edited by

        @guardian said in Whitelisting DNSBL in pfBlocker:

        I looked around but all I could find was Bypassing DNSBL for specific IPs, and whitelisting IPs-nothing on preventing DNSBL entries from getting loaded in the Unbound DNSBL tables . (Maybe a good question to sticky?)

        Don't lie or get some glasses:
        0_1545245130709_really.png
        and there are a lot more posts about this topic further down.

        G 1 Reply Last reply Reply Quote 0
        • G
          guardian Rebel Alliance @Grimson
          last edited by

          @grimson said in Whitelisting DNSBL in pfBlocker:

          @guardian said in Whitelisting DNSBL in pfBlocker:

          I looked around but all I could find was Bypassing DNSBL for specific IPs, and whitelisting IPs-nothing on preventing DNSBL entries from getting loaded in the Unbound DNSBL tables . (Maybe a good question to sticky?)

          Don't lie or get some glasses:
          0_1545245130709_really.png
          and there are a lot more posts about this topic further down.

          With all due respect, did your read that post? It doesn't answer the question that I am asking.

          I know about + on the log, but that means that I have to find the item on the log - often that isn't easy, and I can't deal with the problem proactively. I am looking for some way to explicitly and proactively exclude a domain from the DNSBL.

          If you find my post useful, please give it a thumbs up!
          pfSense 2.7.2-RELEASE

          GrimsonG 1 Reply Last reply Reply Quote 0
          • GrimsonG
            Grimson Banned @guardian
            last edited by

            @guardian said in Whitelisting DNSBL in pfBlocker:

            With all due respect, did your read that post? It doesn't answer the question that I am asking.

            Did you search and read other posts about this topic? I doubt that.

            I know about + on the log, but that means that I have to find the item on the log - often that isn't easy, and I can't deal with the problem proactively. I am looking for some way to explicitly and proactively exclude a domain from the DNSBL.

            So you didn't even really look at the DNSBL settings or read the included help:

            0_1545262076921_really2.png

            Is it really that hard to even look at the settings before asking questions and wasting the time of others?

            1 Reply Last reply Reply Quote 0
            • RonpfSR
              RonpfS @guardian
              last edited by

              @guardian said in Whitelisting DNSBL in pfBlocker:

              I looked around but all I could find was Bypassing DNSBL for specific IPs, and whitelisting IPs-nothing on preventing DNSBL entries from getting loaded in the Unbound DNSBL tables . (Maybe a good question to sticky?)

              You have to understand that DNSBL operates in the Domain names space and not in the IP space. If DNSBL collects IPs from DNSBL table, it creates a pfB_DNSBLIP_v4 table that is managed by the IP portion of pfBlockerNG.

              You have to visit the IP tab to deal with IP Suppression (and not Whitelisting).

              Click on the many infoblocks to find out how to configure pfBlockerNG.

              2.4.5-RELEASE-p1 (amd64)
              Intel Core2 Quad CPU Q8400 @ 2.66GHz 8GB
              Backup 0.5_5, Bandwidthd 0.7.4_4, Cron 0.3.7_5, pfBlockerNG-devel 3.0.0_16, Status_Traffic_Totals 2.3.1_1, System_Patches 1.2_5

              1 Reply Last reply Reply Quote 0
              • G
                guardian Rebel Alliance
                last edited by

                @grimson said in Whitelisting DNSBL in pfBlocker:

                @guardian said in Whitelisting DNSBL in pfBlocker:

                With all due respect, did your read that post? It doesn't answer the question that I am asking.

                Did you search and read other posts about this topic? I doubt that.

                I know about + on the log, but that means that I have to find the item on the log - often that isn't easy, and I can't deal with the problem proactively. I am looking for some way to explicitly and proactively exclude a domain from the DNSBL.

                So you didn't even really look at the DNSBL settings or read the included help:

                0_1545262076921_really2.png

                Is it really that hard to even look at the settings before asking questions and wasting the time of others?

                It was a case of looking but not seeing. I had a vague recollection of there being a section, but when I first looked I missed it, assumed that it wasn't there and spent a lot of time looking in other places. It is below the fold and buried in other tabs so I missed it.

                When I saw your post I knew that I had clearly overlooked something and was finally able to find the section. In fact, when I opened the section, I found that I had put entries in there about 18 months ago. I couldn't find any posts because it was so damn simple. This is the digital example of hunting high and low for your car keys (or something else) when it is lying in plan sight.

                Sorry for the inconvenience, thanks for helping me find the answer to the question.

                For the benefit of anyone looking for the answer to the question:
                pfBlocker Domain Whitelisting
                Navigate to Firewall / pfBlockerNG / DNSBL and open the area
                Custom Domain Whitelist near the bottom of the page.

                If you find my post useful, please give it a thumbs up!
                pfSense 2.7.2-RELEASE

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post
                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.