Stale bogon list comes with current pfSense install package.



  • I just recently installed pfSense w/packages (v 1.2.2 built on Thu Jan 8 22:30:24 EST 2009) onto a Soekris net5501 equipped with a G.SKILL 64GB SATA SSD. The install went pretty smoothly (had a problem with incorrect /etc/fstab entries that kept if from finding the boot and swap partitions) and seems to be routing the networks nicely.

    BTW, Soekris provides outstanding documentation and this helped out tremendously. OK, nuff of that!  ::)

    This is where I obtained the pfSense LiveCD from.

    ftp://reflection.ncsa.uiuc.edu/pub/pfSense/downloads/

    However, I have a few questions, below…

    Is this the most recent bogon list?
    http://files.pfsense.org/bogon-bn-nonagg.txt

    Is this the most recent bogon retrieval script?
    http://redmine.pfsense.org/repositories/entry/pfsense/etc/rc.update_bogons.sh?rev=aeca0c4e2c84c336f4b47134720edf6e75dec739

    This is the bogon list that came with the installation:

    $ ls -al /etc/bogons
    -rw-r--r--  1 root  wheel  588 Oct 25  2007 /etc/bogons

    $ cat /etc/bogons
    0.0.0.0/8
    1.0.0.0/8
    2.0.0.0/8
    5.0.0.0/8
    23.0.0.0/8
    27.0.0.0/8
    31.0.0.0/8
    36.0.0.0/8
    37.0.0.0/8
    39.0.0.0/8
    42.0.0.0/8
    46.0.0.0/8
    49.0.0.0/8
    50.0.0.0/8
    100.0.0.0/8
    101.0.0.0/8
    102.0.0.0/8
    103.0.0.0/8
    104.0.0.0/8
    105.0.0.0/8
    106.0.0.0/8
    107.0.0.0/8
    108.0.0.0/8
    109.0.0.0/8
    110.0.0.0/8
    111.0.0.0/8
    112.0.0.0/8
    113.0.0.0/8
    114.0.0.0/8
    115.0.0.0/8
    127.0.0.0/8
    169.254.0.0/16
    173.0.0.0/8
    174.0.0.0/8
    175.0.0.0/8
    176.0.0.0/8
    177.0.0.0/8
    178.0.0.0/8
    179.0.0.0/8
    180.0.0.0/8
    181.0.0.0/8
    182.0.0.0/8
    183.0.0.0/8
    184.0.0.0/8
    185.0.0.0/8
    192.0.2.0/24
    197.0.0.0/8
    198.18.0.0/15
    223.0.0.0/8
    224.0.0.0/3

    This is what's on there now after executing the bogon retrieval script that came with the package (I temporarily removed the sleep period)

    $ ls -al /etc/bogons
    -rw-r--r--  1 root  wheel  443 Apr 17 15:04 /etc/bogons

    $ cat /etc/bogons
    0.0.0.0/8
    1.0.0.0/8
    2.0.0.0/8
    5.0.0.0/8
    14.0.0.0/8
    23.0.0.0/8
    27.0.0.0/8
    31.0.0.0/8
    36.0.0.0/8
    37.0.0.0/8
    39.0.0.0/8
    42.0.0.0/8
    46.0.0.0/8
    49.0.0.0/8
    50.0.0.0/8
    100.0.0.0/8
    101.0.0.0/8
    102.0.0.0/8
    103.0.0.0/8
    104.0.0.0/8
    105.0.0.0/8
    106.0.0.0/8
    107.0.0.0/8
    127.0.0.0/8
    169.254.0.0/16
    175.0.0.0/8
    176.0.0.0/8
    177.0.0.0/8
    179.0.0.0/8
    180.0.0.0/8
    181.0.0.0/8
    182.0.0.0/8
    183.0.0.0/8
    185.0.0.0/8
    192.0.2.0/24
    198.18.0.0/15
    223.0.0.0/8
    224.0.0.0/3

    Finally, here are the log entries generated by the bogon retrieval script (rc.update_bogons.sh):
    Apr 17 15:04:02    root: 13 addresses deleted.
    Apr 17 15:04:02    root: Bogons file downloaded: 1 addresses added.
    Apr 17 15:03:57    root: rc.update_bogons.sh is beginning the update cycle.
    Apr 17 15:03:57    root: rc.update_bogons.sh is sleeping for 48808
    Apr 17 15:03:57    root: rc.update_bogons.sh is starting up.

    Does this all look right?

    Thanks in advance...

    LJColetti



  • My home IP is on the 173/8 block and the outdated listed was blocking me from my pfsense box at work. This caused me over a week of aggravation and numerous phone calls and emails to my two ISPs. For once they were correct in saying "It's not our fault you don't have access."

    Maybe this update needs to be kicked off after a fresh installation automatically.  >:(



  • This was already reported in 1.2.1/1.2.3 http://forum.pfsense.org/index.php/topic,13278.0.html
    As mentioned there, it has been updated and is current in snaps and 1.2.3RC1


Log in to reply