Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Stale bogon list comes with current pfSense install package.

    Scheduled Pinned Locked Moved Problems Installing or Upgrading pfSense Software
    3 Posts 3 Posters 4.0k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • L
      ljc
      last edited by

      I just recently installed pfSense w/packages (v 1.2.2 built on Thu Jan 8 22:30:24 EST 2009) onto a Soekris net5501 equipped with a G.SKILL 64GB SATA SSD. The install went pretty smoothly (had a problem with incorrect /etc/fstab entries that kept if from finding the boot and swap partitions) and seems to be routing the networks nicely.

      BTW, Soekris provides outstanding documentation and this helped out tremendously. OK, nuff of that!  ::)

      This is where I obtained the pfSense LiveCD from.

      ftp://reflection.ncsa.uiuc.edu/pub/pfSense/downloads/

      However, I have a few questions, below…

      Is this the most recent bogon list?
      http://files.pfsense.org/bogon-bn-nonagg.txt

      Is this the most recent bogon retrieval script?
      http://redmine.pfsense.org/repositories/entry/pfsense/etc/rc.update_bogons.sh?rev=aeca0c4e2c84c336f4b47134720edf6e75dec739

      This is the bogon list that came with the installation:

      $ ls -al /etc/bogons
      -rw-r--r--  1 root  wheel  588 Oct 25  2007 /etc/bogons

      $ cat /etc/bogons
      0.0.0.0/8
      1.0.0.0/8
      2.0.0.0/8
      5.0.0.0/8
      23.0.0.0/8
      27.0.0.0/8
      31.0.0.0/8
      36.0.0.0/8
      37.0.0.0/8
      39.0.0.0/8
      42.0.0.0/8
      46.0.0.0/8
      49.0.0.0/8
      50.0.0.0/8
      100.0.0.0/8
      101.0.0.0/8
      102.0.0.0/8
      103.0.0.0/8
      104.0.0.0/8
      105.0.0.0/8
      106.0.0.0/8
      107.0.0.0/8
      108.0.0.0/8
      109.0.0.0/8
      110.0.0.0/8
      111.0.0.0/8
      112.0.0.0/8
      113.0.0.0/8
      114.0.0.0/8
      115.0.0.0/8
      127.0.0.0/8
      169.254.0.0/16
      173.0.0.0/8
      174.0.0.0/8
      175.0.0.0/8
      176.0.0.0/8
      177.0.0.0/8
      178.0.0.0/8
      179.0.0.0/8
      180.0.0.0/8
      181.0.0.0/8
      182.0.0.0/8
      183.0.0.0/8
      184.0.0.0/8
      185.0.0.0/8
      192.0.2.0/24
      197.0.0.0/8
      198.18.0.0/15
      223.0.0.0/8
      224.0.0.0/3

      This is what's on there now after executing the bogon retrieval script that came with the package (I temporarily removed the sleep period)

      $ ls -al /etc/bogons
      -rw-r--r--  1 root  wheel  443 Apr 17 15:04 /etc/bogons

      $ cat /etc/bogons
      0.0.0.0/8
      1.0.0.0/8
      2.0.0.0/8
      5.0.0.0/8
      14.0.0.0/8
      23.0.0.0/8
      27.0.0.0/8
      31.0.0.0/8
      36.0.0.0/8
      37.0.0.0/8
      39.0.0.0/8
      42.0.0.0/8
      46.0.0.0/8
      49.0.0.0/8
      50.0.0.0/8
      100.0.0.0/8
      101.0.0.0/8
      102.0.0.0/8
      103.0.0.0/8
      104.0.0.0/8
      105.0.0.0/8
      106.0.0.0/8
      107.0.0.0/8
      127.0.0.0/8
      169.254.0.0/16
      175.0.0.0/8
      176.0.0.0/8
      177.0.0.0/8
      179.0.0.0/8
      180.0.0.0/8
      181.0.0.0/8
      182.0.0.0/8
      183.0.0.0/8
      185.0.0.0/8
      192.0.2.0/24
      198.18.0.0/15
      223.0.0.0/8
      224.0.0.0/3

      Finally, here are the log entries generated by the bogon retrieval script (rc.update_bogons.sh):
      Apr 17 15:04:02    root: 13 addresses deleted.
      Apr 17 15:04:02    root: Bogons file downloaded: 1 addresses added.
      Apr 17 15:03:57    root: rc.update_bogons.sh is beginning the update cycle.
      Apr 17 15:03:57    root: rc.update_bogons.sh is sleeping for 48808
      Apr 17 15:03:57    root: rc.update_bogons.sh is starting up.

      Does this all look right?

      Thanks in advance...

      LJColetti

      1 Reply Last reply Reply Quote 0
      • A
        Auto
        last edited by

        My home IP is on the 173/8 block and the outdated listed was blocking me from my pfsense box at work. This caused me over a week of aggravation and numerous phone calls and emails to my two ISPs. For once they were correct in saying "It's not our fault you don't have access."

        Maybe this update needs to be kicked off after a fresh installation automatically.  >:(

        1 Reply Last reply Reply Quote 0
        • dotdashD
          dotdash
          last edited by

          This was already reported in 1.2.1/1.2.3 http://forum.pfsense.org/index.php/topic,13278.0.html
          As mentioned there, it has been updated and is current in snaps and 1.2.3RC1

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.