Pf_DNSBLIP no rules defined



  • Hello,

    Fresh installation pfsense updated to RELEASE-p1(amd64). After installing small error pfb_DNSBLIP -  pfblockerNG No Rules Defined for this Alias.

    squid proxy and pfblockerNG together do i need some extra settings to work properly.

    check screenshot attached




  • What did you configure under DNSBL IP Firewall Rule Settings?



  • @RonpfS:

    What did you configure under DNSBL IP Firewall Rule Settings?

    Nothing configured see screenshot..

    After configuring pfblockerNG Ads are still appearing on all wifi connected devices phone tablets…

    ![Screen Shot 2016-10-09 at 2.32.13 PM.png](/public/imported_attachments/1/Screen Shot 2016-10-09 at 2.32.13 PM.png)
    ![Screen Shot 2016-10-09 at 2.32.13 PM.png_thumb](/public/imported_attachments/1/Screen Shot 2016-10-09 at 2.32.13 PM.png_thumb)
    ![Screen Shot 2016-10-09 at 2.33.05 PM.png](/public/imported_attachments/1/Screen Shot 2016-10-09 at 2.33.05 PM.png)
    ![Screen Shot 2016-10-09 at 2.33.05 PM.png_thumb](/public/imported_attachments/1/Screen Shot 2016-10-09 at 2.33.05 PM.png_thumb)


  • Moderator

    @RonpfS:

    What did you configure under DNSBL IP Firewall Rule Settings?

    Hi tushar,

    As per RonpfS reply. You need to define the DNSBL IP Firewall Rule settings in the DNSBL Tab, and also in the General Tab (Interface settings etc)… in order for the DNSBL IP Rules to be generated by the package.



  • @BBcan177:

    @RonpfS:

    What did you configure under DNSBL IP Firewall Rule Settings?

    Hi tushar,

    As per RonpfS reply. You need to define the DNSBL IP Firewall Rule settings in the DNSBL Tab, and also in the General Tab (Interface settings etc)… in order for the DNSBL IP Rules to be generated by the package.

    Ok i added some iblocklist like adserver by yoy, Ads by bluetack, level1 and level2. After adding these in Firewall/pfBlockerNG/IPv4 that error has gone. but i disabled iblocklist level 1 and 2 because it disables most legal sites.

    BBcan177, why my wifi device like android or ios youtube Ads still appearing same as before even after doing all these adding DNSBL Feeds and DNSBL Easy List.

    ![Screen Shot 2016-10-10 at 10.30.27 AM.png](/public/imported_attachments/1/Screen Shot 2016-10-10 at 10.30.27 AM.png)
    ![Screen Shot 2016-10-10 at 10.30.27 AM.png_thumb](/public/imported_attachments/1/Screen Shot 2016-10-10 at 10.30.27 AM.png_thumb)
    ![Screen Shot 2016-10-10 at 10.33.20 AM.png](/public/imported_attachments/1/Screen Shot 2016-10-10 at 10.33.20 AM.png)
    ![Screen Shot 2016-10-10 at 10.33.20 AM.png_thumb](/public/imported_attachments/1/Screen Shot 2016-10-10 at 10.33.20 AM.png_thumb)
    ![Screen Shot 2016-10-10 at 10.38.11 AM.png](/public/imported_attachments/1/Screen Shot 2016-10-10 at 10.38.11 AM.png)
    ![Screen Shot 2016-10-10 at 10.38.11 AM.png_thumb](/public/imported_attachments/1/Screen Shot 2016-10-10 at 10.38.11 AM.png_thumb)



  • I had this issue. It was due to the fact that my wifi devices were not using pfsense as their only dns server.



  • @SumitB:

    I had this issue. It was due to the fact that my wifi devices were not using pfsense as their only dns server.

    my all wifi device using pfsense DNS server as 192.168.1.1



  • If your devices use dhcp, check what DNS server is being assigned to them. Try leaving the DNS Server field in the DHCP Server page of pfsense blank.



  • @SumitB:

    If your devices use dhcp, check what DNS server is being assigned to them. Try leaving the DNS Server field in the DHCP Server page of pfsense blank.

    All wifi device assigned as DNS ip as 192.168.1.1 of pfsense ip



  • You can see the system log in pfsense in realtime and check if the wifi device is actually sending its dns requests to the router. I still feel its a case of pfsense not doing the dns resolutions.



  • @SumitB:

    You can see the system log in pfsense in realtime and check if the wifi device is actually sending its dns requests to the router. I still feel its a case of pfsense not doing the dns resolutions.

    As i can see from logs wifi device using pfsense ip 192.168.1.1 and other Desktop computer or laptop Ads are blocking very well and browser ads blocking working fine on wifi device but this stubborn youtube App Ads making me :( @#$#@$



  • Check the DNS configuration of the wifi device to see if it bypass DHCP settings.



  • If you mean the ad banners on youtube's home page which play the video ad automatically, I too get those. Those are https links. I have not been able to prevent them. Maybe someone who has been able to will come up with a solution.



  • I meant to check the settings on the device for DNS resolution. If the device use anything else than pfsense for DNS resolution, it will bypass DNSBL blocking.



  • @SumitB:

    If you mean the ad banners on youtube's home page which play the video ad automatically, I too get those. Those are https links. I have not been able to prevent them. Maybe someone who has been able to will come up with a solution.

    yes exactly you got my point Ads play at beginning of video ans sometime in between videos, that is what im saying in youtube App for both android and ios device. On using ublock origin or ADBlock nothing comes clean and clear :) but i want this on my pfsense, should be blocked at my firewall.

    using these list for Ad blocking and privacy http://hosts-file.net/ad_servers.txt , http://pgl.yoyo.org/adservers/serverlist.php?hostformat=hosts&mimetype=plaintext , https://adaway.org/hosts.txt , http://sysctl.org/cameleon/hosts

    Privacy - DNSBL Easy List hoping for more list to add for more secure internet usage



  • @RonpfS:

    I meant to check the settings on the device for DNS resolution. If the device use anything else than pfsense for DNS resolution, it will bypass DNSBL blocking.

    Sir i checked all wifi device using same pfSense IP as there DNS and Gateway… Still five seconds video ads appear starting and in between.


  • Moderator

    If you see an AD in a web page, right click on it, and click "Inspect"… This will show what the domain of the AD is...

    There are other DNSBL Feeds that can be added (Check the DNSBL thread), and you can also manually add Domains to the Custom Lists...



  • @BBcan177:

    If you see an AD in a web page, right click on it, and click "Inspect"… This will show what the domain of the AD is...

    There are other DNSBL Feeds that can be added (Check the DNSBL thread), and you can also manually add Domains to the Custom Lists...

    actually i see Ads on youtube app on my android and iOS devices, is there any solution?