pfBlockerNG-devel v2.2.5_28 > IP > Reputation: I get .../pfblockerng/pfblockerng_reputation.php 404 not found
-
@nzkiwi68
Only other thing I can suggest is that Maxmind is blocking your wan ip. Are you going out of a vpn connection? Try without. -
@BBcan177 No VPN
It was working on the old SG-4860 HA cluster, I'm sure if I plugged them back in, it would work.
Can you give me a cmd I can run in the shell that should download the DB?
I can modify the code you give me and put in my token...I expect that will work and prove there's something amiss with this pfBlocker installation
-
Could it be a rights permission for the local directory where pfBlockerNG tried to save the Geolite2 DB files?
-
I can ping dev.maxmind.com...
-
I think MaxMind may have changed everything and broken pfBlocker.
After logging onto the MaxMind, reading their blog on how to directly download;
https://dev.maxmind.com/geoip/geoipupdate/#Direct_DownloadsI create the following URL;
https://download.maxmind.com/app/geoip_download?edition_id=GeoLite2-country&license_key=XXXXXXXXX&suffix=tar.gzWhere XXXXX is my token / key, but it won't won't download using a browser.
-
@nzkiwi68 said in pfBlockerNG-devel v2.2.5_28 > IP > Reputation: I get .../pfblockerng/pfblockerng_reputation.php 404 not found:
I think MaxMind may have changed everything and broken pfBlocker.
After logging onto the MaxMind, reading their blog on how to directly download;
https://dev.maxmind.com/geoip/geoipupdate/#Direct_DownloadsI create the following URL;
https://download.maxmind.com/app/geoip_download?edition_id=GeoLite2-country&license_key=XXXXXXXXX&suffix=tar.gzWhere XXXXX is my token / key, but it won't won't download using a browser.
I get : "Database edition not found" in FireFox.
-
The URLs that pfBlockerNG uses are here for the MaxMind databases:
https://github.com/pfsense/FreeBSD-ports/blob/devel/net/pfSense-pkg-pfBlockerNG-devel/files/usr/local/www/pfblockerng/pfblockerng.php#L70-L84You can see from your screenshots/posts that it connects to MaxMind and gets "Authorization denied"... So its something on MaxMinds side blocking or rate-limiting you. If you attempt too many downloads in one day than that could block your WAN IP. There is no posted literature on the MaxMind website that indicates their limiting details.
You can try to change your WAN IP if its dynamic and see if that helps. Also login to your MaxMind Account and see the Download History to see how many downloads you completed today.
Other than that, I would contact MaxMind and see what their support has to say. I don't see any issues with the package from the details that you have posted here.
If it is MaxMind blocking you, then you might need to wait 24 hours. Alternatively download the files from another site and copy them to the /usr/local/share/GeoIP folder and run this command to extract them:
php -f /usr/local/www/pfblockerng/pfblockerng.php ugc -
Fixed!!!
Oh my goodness, a bit embarrassing, but, in the interests of helping everyone (at my own expense <grin>) the issue is;
I was using the TOKEN you get when you sign up for MaxMind and didn't go off and generate an a proper actual LICENSE KEY!
That's may bad...
This test URL is good for seeing if it works...
https://download.maxmind.com/app/geoip_download?edition_id=GeoLite2-country&license_key=XXXXXXXXX&suffix=tar.gzReplace XXXX with your license key that you get inside MaxMind when you generate it!
-
Also confirm that you used the correct MaxMind Key generation as the other Key types will not work.
Enter a "License key description", Select "yes" for "GeoIP Update", and select the License key for "version 3.1.1 or newer" and confirm.
"Experience is something you don't get until just after you need it."
Website: http://pfBlockerNG.com
Twitter: @BBcan177 #pfBlockerNG
Reddit: https://www.reddit.com/r/pfBlockerNG/new/ -
The reason I got caught, is I setup a bunch of other sites and put into their pfBlockerNG their new MaxMind token (wrong!!!) by mistake.
They all seemed to work, because, they already had a copy of the GeoIP DB downloaded. In reality they won't actually work when they go and try and update...
Now, this site, with the firewall hardware change was all new, no existing DB and couldn't download the DB at all, hence the problem with using the token (wrong) instead of generating and using the license key caught me out....
-
@BBcan177 Thanks for your help.
Sorry I have wasted your time.
lastly, pfBlockerNG is amazing. It just makes pfSense so much more powerful as a great firewall solution.
