Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    pfBlockerNG IP Reputation

    Scheduled Pinned Locked Moved 2.5 Development Snapshots (Retired)
    35 Posts 6 Posters 5.4k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • NollipfSenseN
      NollipfSense @serbus
      last edited by

      @serbus and @Gertjan I used the CLI and here is the result:

      [2.5.0-DEVELOPMENT][admin@NollipfSense.nollipfsense.lan]/root: php /usr/local/www/pfblockerng/pfblockerng.php dc

      Download Process Starting [ 05/27/20 10:55:35 ]
      /usr/local/share/GeoIP/GeoLite2-Country.tar.gz 401 Unauthorized

      Failed to Download GeoLite2-Country.mmdb
      /usr/local/share/GeoIP/GeoLite2-Country-CSV.zip 401 Unauthorized

      Failed to Download
      Download Process Ended [ 05/27/20 10:55:36 ]

      [2.5.0-DEVELOPMENT][admin@NollipfSense.nollipfsense.lan]/root:

      What I don't understand is I have a registered key; so, not sure what the unauthorized is all about nor what to do to resolve.

      Screen Shot 2020-05-27 at 10.58.12 AM.png

      pfSense+ 23.09 Lenovo Thinkcentre M93P SFF Quadcore i7 dual Raid-ZFS 128GB-SSD 32GB-RAM PCI-Intel i350-t4 NIC, -Intel QAT 8950.
      pfSense+ 23.09 VM-Proxmox, Dell Precision Xeon-W2155 Nvme 500GB-ZFS 128GB-RAM PCIe-Intel i350-t4, Intel QAT-8950, P-cloud.

      GertjanG 1 Reply Last reply Reply Quote 0
      • RonpfSR
        RonpfS
        last edited by

        Goto Maxminds and check your account and Download History.

        2.4.5-RELEASE-p1 (amd64)
        Intel Core2 Quad CPU Q8400 @ 2.66GHz 8GB
        Backup 0.5_5, Bandwidthd 0.7.4_4, Cron 0.3.7_5, pfBlockerNG-devel 3.0.0_16, Status_Traffic_Totals 2.3.1_1, System_Patches 1.2_5

        NollipfSenseN 1 Reply Last reply Reply Quote 0
        • NollipfSenseN
          NollipfSense @RonpfS
          last edited by

          @RonpfS Last download was on May 5, 2020 at 14.56pm ... so, I guess I'll have to wait for June. I had to reinstall a fresh pfSense 2.5-dev so may explain why I haven't got the feed since its once per month.

          pfSense+ 23.09 Lenovo Thinkcentre M93P SFF Quadcore i7 dual Raid-ZFS 128GB-SSD 32GB-RAM PCI-Intel i350-t4 NIC, -Intel QAT 8950.
          pfSense+ 23.09 VM-Proxmox, Dell Precision Xeon-W2155 Nvme 500GB-ZFS 128GB-RAM PCIe-Intel i350-t4, Intel QAT-8950, P-cloud.

          J 1 Reply Last reply Reply Quote 0
          • RonpfSR
            RonpfS
            last edited by RonpfS

            It changes every 6 days, do you see the md5 download every day ?

            2.4.5-RELEASE-p1 (amd64)
            Intel Core2 Quad CPU Q8400 @ 2.66GHz 8GB
            Backup 0.5_5, Bandwidthd 0.7.4_4, Cron 0.3.7_5, pfBlockerNG-devel 3.0.0_16, Status_Traffic_Totals 2.3.1_1, System_Patches 1.2_5

            1 Reply Last reply Reply Quote 0
            • S
              serbus
              last edited by

              Hello!

              Is there a limit to the number of times per month you can download the files from maxmind?

              I use the same license key in a number of different routers and routinely download "off schedule" when setting things up or troubleshooting.

              Maybe you could create a new license key at the maxmind site and try that in your router.

              John

              Lex parsimoniae

              1 Reply Last reply Reply Quote 0
              • J
                jdeloach @NollipfSense
                last edited by

                @NollipfSense said in pfBlockerNG IP Reputation:

                @RonpfS Last download was on May 5, 2020 at 14.56pm ... so, I guess I'll have to wait for June. I had to reinstall a fresh pfSense 2.5-dev so may explain why I haven't got the feed since its once per month.

                Run this command from the command prompt to force Maxmind to update: php /usr/local/www/pfblockerng/pfblockerng.php dc . This should force the Maxmind.com database to update.

                1 Reply Last reply Reply Quote 0
                • GertjanG
                  Gertjan @NollipfSense
                  last edited by

                  @jdeloach said in pfBlockerNG IP Reputation:

                  Run this command from the command prompt to force Maxmind to update: php /usr/local/www/pfblockerng/pfblockerng.php dc . This should force the Maxmind.com database to update.

                  He did ( see above ) :

                  @NollipfSense said in pfBlockerNG IP Reputation:

                  [2.5.0-DEVELOPMENT][admin@NollipfSense.nollipfsense.lan]/root: php /usr/local/www/pfblockerng/pfblockerng.php dc
                  Download Process Starting [ 05/27/20 10:55:35 ]

                  He wasn't authorized.

                  /usr/local/share/GeoIP/GeoLite2-Country.tar.gz 401 Unauthorized
                  Failed to Download GeoLite2-Country.mmdb
                  /usr/local/share/GeoIP/GeoLite2-Country-CSV.zip 401 Unauthorized
                  Failed to Download
                  Download Process Ended [ 05/27/20 10:55:36 ]

                  No "help me" PM's please. Use the forum, the community will thank you.
                  Edit : and where are the logs ??

                  1 Reply Last reply Reply Quote 0
                  • NollipfSenseN
                    NollipfSense
                    last edited by NollipfSense

                    So, I contacted MaxMind support that confirmed that somehow when I did the force the update, it kept downloading last month's (April) database ... which is not available ... hence, the unauthorized message.

                    Support suggested "If you alter your download URL and remove the 'date' parameter entirely, that will make it download the most recent database available rather than a specific database version. Alternatively, you can use the 'Get permalinks' link in your Download Files page to get a permanent download URL that you can use."

                    So, m question: where would I find the download file to change or replace with "permalinks."

                    pfSense+ 23.09 Lenovo Thinkcentre M93P SFF Quadcore i7 dual Raid-ZFS 128GB-SSD 32GB-RAM PCI-Intel i350-t4 NIC, -Intel QAT 8950.
                    pfSense+ 23.09 VM-Proxmox, Dell Precision Xeon-W2155 Nvme 500GB-ZFS 128GB-RAM PCIe-Intel i350-t4, Intel QAT-8950, P-cloud.

                    S 1 Reply Last reply Reply Quote 0
                    • RonpfSR
                      RonpfS
                      last edited by

                      Maybe it's time to move this topic to pfblockerNG forum.

                      2.4.5-RELEASE-p1 (amd64)
                      Intel Core2 Quad CPU Q8400 @ 2.66GHz 8GB
                      Backup 0.5_5, Bandwidthd 0.7.4_4, Cron 0.3.7_5, pfBlockerNG-devel 3.0.0_16, Status_Traffic_Totals 2.3.1_1, System_Patches 1.2_5

                      NollipfSenseN 1 Reply Last reply Reply Quote 0
                      • NollipfSenseN
                        NollipfSense @RonpfS
                        last edited by

                        @RonpfS That's okay with me ... admin.

                        pfSense+ 23.09 Lenovo Thinkcentre M93P SFF Quadcore i7 dual Raid-ZFS 128GB-SSD 32GB-RAM PCI-Intel i350-t4 NIC, -Intel QAT 8950.
                        pfSense+ 23.09 VM-Proxmox, Dell Precision Xeon-W2155 Nvme 500GB-ZFS 128GB-RAM PCIe-Intel i350-t4, Intel QAT-8950, P-cloud.

                        1 Reply Last reply Reply Quote 0
                        • S
                          serbus @NollipfSense
                          last edited by serbus

                          @NollipfSense

                          Hello!

                          Pfb uses the maxmind permalink url for retrieving the maxmind db. It does not look like it asks for a specific version or month.

                          Here is the url from the pfb code:

                          https://download.maxmind.com/app/geoip_download?edition_id=GeoLite2-Country&license_key=MAXMIND_KEY&suffix=tar.gz

                          You should be able to replace MAXMIND_KEY with your key and try the url in your browser.

                          John

                          Lex parsimoniae

                          NollipfSenseN 1 Reply Last reply Reply Quote 0
                          • NollipfSenseN
                            NollipfSense @serbus
                            last edited by

                            @serbus Hello John, I preferred to let pfSense do the downloading instead of downloading it by way of the browser. I looked at this file: /usr/local/www/pfblockerng/pfblockerng_feeds.php ... however, no MaxMind url was in the file.

                            Alternatively, I could wait until next Thursday when the new file would be available.

                            pfSense+ 23.09 Lenovo Thinkcentre M93P SFF Quadcore i7 dual Raid-ZFS 128GB-SSD 32GB-RAM PCI-Intel i350-t4 NIC, -Intel QAT 8950.
                            pfSense+ 23.09 VM-Proxmox, Dell Precision Xeon-W2155 Nvme 500GB-ZFS 128GB-RAM PCIe-Intel i350-t4, Intel QAT-8950, P-cloud.

                            1 Reply Last reply Reply Quote 0
                            • S
                              serbus
                              last edited by

                              Hello!

                              The maxmind urls are in usr/local/www/pfblockerng/pfblockerng.php

                              Loading that link in your browser would just be a general test for your maxmind account, license key, and networks access to the download.

                              John

                              Lex parsimoniae

                              NollipfSenseN 1 Reply Last reply Reply Quote 0
                              • NollipfSenseN
                                NollipfSense @serbus
                                last edited by

                                @serbus Well John, early this morning I tried again and got same unauthorized ... so, I tried the browser and got invalid key; so, I just generated a new key ... all is good.

                                pfSense+ 23.09 Lenovo Thinkcentre M93P SFF Quadcore i7 dual Raid-ZFS 128GB-SSD 32GB-RAM PCI-Intel i350-t4 NIC, -Intel QAT 8950.
                                pfSense+ 23.09 VM-Proxmox, Dell Precision Xeon-W2155 Nvme 500GB-ZFS 128GB-RAM PCIe-Intel i350-t4, Intel QAT-8950, P-cloud.

                                1 Reply Last reply Reply Quote 0
                                • GertjanG Gertjan referenced this topic on
                                • GertjanG Gertjan referenced this topic on
                                • First post
                                  Last post
                                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.