Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Privacy Error

    pfBlockerNG
    2
    9
    2201
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • L
      LIGISTX last edited by

      I am not even sure if it is pfBlockerNG (although, its the only package I am running so I have to assume it is), and I am not sure when this started happening, but if I try and go to a google doc or sheet, or even just now "https://www.tenforums.com/general-support/13611-windows-10-sleep-shortcut.html" (have had this issue with other websites as well), Chrome throws up:

      "Your connection is not private

      Attackers might be trying to steal your information from www.tenforums.com (for example, passwords, messages, or credit cards). NET::ERR_CERT_AUTHORITY_INVALID"

      I am a noob pfsense user, and I am not even sure how to diagnose what is causing this, but like I said, I have to assume its pfblockerNG.

      Any ideas? Seeing as it has happened for DAYS with google docs, I have to assume its my end, not googles lol.

      1 Reply Last reply Reply Quote 0
      • L
        LIGISTX last edited by

        Ok, to add some detail, looks like tenforums is outright being blocked, it is redirecting me to the 1x1 pixel website (I forget what that is called, but I know what it implies). So that is I guess a place to start, its blocking the IP outright. Not sure why google docs have issues (but google drive and other google software hasn't given me issues).

        1 Reply Last reply Reply Quote 0
        • BBcan177
          BBcan177 Moderator last edited by

          Looks like hpHosts has listed that domain:

          grep "tenforums.com" /var/db/pfblockerng/dnsblorig/*
          /var/db/pfblockerng/dnsblorig/hpHosts_MMT.orig:127.0.0.1        tenforums.com
          /var/db/pfblockerng/dnsblorig/hpHosts_MMT.orig:127.0.0.1        www.tenforums.com
          

          You can goto the pfBlockeNG Alerts tab and whitelist that domain.

          The hpHosts MMT feed details:
          This file contains sites involved in misleading marketing (e.g. fake Flash update adverts) listed in the hpHosts database This should ONLY be downloaded by those wanting to block misleading marketing sites and nothing else, and requires manual merging.

          If you using the hpHosts (zip) feed. It includes all of the hpHost categories. You can remove the full category feed and add the specific category feeds that suit your network needs…  See this URL for details:

          https://hosts-file.net/?s=Download

          "Experience is something you don't get until just after you need it."

          Website: http://pfBlockerNG.com
          Twitter: @BBcan177  #pfBlockerNG
          Reddit: https://www.reddit.com/r/pfBlockerNG/new/

          1 Reply Last reply Reply Quote 0
          • L
            LIGISTX last edited by

            Awesome, thanks for that info. But what about google..? I don't know who would be blocking them…...........?

            1 Reply Last reply Reply Quote 0
            • L
              LIGISTX last edited by

              @LIGISTX:

              Awesome, thanks for that info. But what about google..? I don't know who would be blocking them…...........?

              Never mind, it is also hpHosts. I need to up my pfsense game. I use it because I know its secure, but I have not put in enough of my own effort.

              1 Reply Last reply Reply Quote 0
              • BBcan177
                BBcan177 Moderator last edited by

                @LIGISTX:

                Awesome, thanks for that info. But what about google..? I don't know who would be blocking them…...........?

                The Alerts tab will report what is being blocked.

                You can use the same grep command above and change the domain to see if its listed.

                or

                host -t A example.com
                

                If that replies back with the DNSBL VIP address, then its blocked via DNSBL. It could also be blocked by an IP list… So the Alerts tab is the tool you need to use...

                "Experience is something you don't get until just after you need it."

                Website: http://pfBlockerNG.com
                Twitter: @BBcan177  #pfBlockerNG
                Reddit: https://www.reddit.com/r/pfBlockerNG/new/

                1 Reply Last reply Reply Quote 0
                • L
                  LIGISTX last edited by

                  @BBcan177:

                  @LIGISTX:

                  Awesome, thanks for that info. But what about google..? I don't know who would be blocking them…...........?

                  The Alerts tab will report what is being blocked.

                  You can use the same grep command above and change the domain to see if its listed.

                  or

                  host -t A example.com
                  

                  If that replies back with the DNSBL VIP address, then its blocked via DNSBL. It could also be blocked by an IP list… So the Alerts tab is the tool you need to use...

                  You are awesome. Thanks!

                  1 Reply Last reply Reply Quote 0
                  • BBcan177
                    BBcan177 Moderator last edited by

                    @LIGISTX:

                    You are awesome. Thanks!

                    Anytime… Thanks for using my package  8)

                    "Experience is something you don't get until just after you need it."

                    Website: http://pfBlockerNG.com
                    Twitter: @BBcan177  #pfBlockerNG
                    Reddit: https://www.reddit.com/r/pfBlockerNG/new/

                    1 Reply Last reply Reply Quote 0
                    • L
                      LIGISTX last edited by

                      @BBcan177:

                      @LIGISTX:

                      You are awesome. Thanks!

                      Anytime… Thanks for using my package  8)

                      Now I just need to figure out snort  :-X

                      1 Reply Last reply Reply Quote 0
                      • First post
                        Last post