Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    pfBlockerNG certificate error

    Scheduled Pinned Locked Moved pfBlockerNG
    5 Posts 4 Posters 1.1k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • V
      v0id
      last edited by

      Hello, from yesterday when updated my browser, got this error:

      SEC_ERROR_REUSED_ISSUER_AND_SERIAL

      Is there a way to regenerate the certificate used by pfblocker or a way to avoid this problem?

      1 Reply Last reply Reply Quote 0
      • BBcan177B
        BBcan177 Moderator
        last edited by

        See the following:
        https://www.reddit.com/r/pfBlockerNG/comments/ao98u1/dnsbl_certificate_error/

        "Experience is something you don't get until just after you need it."

        Website: http://pfBlockerNG.com
        Twitter: @BBcan177  #pfBlockerNG
        Reddit: https://www.reddit.com/r/pfBlockerNG/new/

        NollipfSenseN 2 Replies Last reply Reply Quote 0
        • NollipfSenseN
          NollipfSense @BBcan177
          last edited by NollipfSense

          @BBcan177 I also have been experiencing this issue since I added the shodan and DoH feeds. So, the domain is twitter.com and I have been getting this: Error code: MOZILLA_PKIX_ERROR_SELF_SIGNED_CERT
          twitter.com has a security policy called HTTP Strict Transport Security (HSTS), which means that Firefox can only connect to it securely. You can’t add an exception to visit this site.

          I have added it to the whitelist...that didn't work. Then, I followed what you suggested in the link and that still didn't work. This is what I did:
          Screen Shot 2019-10-08 at 9.54.58 AM.png

          Screen Shot 2019-10-08 at 9.56.35 AM.png
          Screen Shot 2019-10-08 at 9.57.28 AM.png
          Screen Shot 2019-10-08 at 10.04.50 AM.png

          pfSense+ 23.09 Lenovo Thinkcentre M93P SFF Quadcore i7 dual Raid-ZFS 128GB-SSD 32GB-RAM PCI-Intel i350-t4 NIC, -Intel QAT 8950.
          pfSense+ 23.09 VM-Proxmox, Dell Precision Xeon-W2155 Nvme 500GB-ZFS 128GB-RAM PCIe-Intel i350-t4, Intel QAT-8950, P-cloud.

          1 Reply Last reply Reply Quote 0
          • NollipfSenseN
            NollipfSense @BBcan177
            last edited by

            @BBcan177 Well, a day later it's working again...trying to understand the delay though in light that I had done a force update. It's so great I can tweet again.

            pfSense+ 23.09 Lenovo Thinkcentre M93P SFF Quadcore i7 dual Raid-ZFS 128GB-SSD 32GB-RAM PCI-Intel i350-t4 NIC, -Intel QAT 8950.
            pfSense+ 23.09 VM-Proxmox, Dell Precision Xeon-W2155 Nvme 500GB-ZFS 128GB-RAM PCIe-Intel i350-t4, Intel QAT-8950, P-cloud.

            1 Reply Last reply Reply Quote 0
            • cybrnookC
              cybrnook
              last edited by

              Your local device could have had the entry cached. Normally I will also disconnect my device from the network, and back on to force the device to flush local cache. Sometime a /flushdns on windows helps too.

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.