TLD blocking

pfBlockerNG
Log in to reply
  • Qinn

    Hi there, I have removed the subnet WLANdevices subnet from the Permit Firewall Rules in the DNSBL Configuration section (did an update and reload) , yet there is still some blocking for this subnet in the Reports section. What am I not doing right (btw TLD is enabled).

    Cheers Qinn

    0_1536407783819_a03638e9-18e1-4a8a-805c-effe85c12277-image.png

    0
  • BBcan177
    Moderator

    @qinn said in TLD blocking:

    I have removed the subnet WLANdevices subnet from the Permit Firewall Rules in the DNSBL Configuration section (did an update and reload) , yet there is still some blocking for this subnet in the Reports section.

    The DNSBL permit rule is only needed to allow subnets to hit the DNSBL VIP address to avoid browser timeouts.

    This option doesn't stop dns resolutions. If you want a subnet to bypass DNSBL, you would need to define a different DNS server for those subnets.

    There is a "views" option in Unbound that will allow for some fine tuning, but that needs to be configured manually.

    See here:

    https://forum.netgate.com/topic/129365/bypassing-dnsbl-for-specific-ips

    1
  • Qinn

    @BBcan177 Thanks for pointing that one out to me, I will give it a try. Maybe an idea (but of course it's all up to you) to add this one in feature releases. Thanks for your quick help and of course a great package!!

    Cheers Qinn

    0

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy