Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    DNSBL: Whitelisted URL still being blocked

    pfBlockerNG
    3
    4
    70
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C
      CyberMinion last edited by CyberMinion

      I have several feeds going into DSNBL, and a manual list. So, when I noticed DNSBL blocking a URL I didn't want it too, I checked my manual lists first. It wasn't there, so I assumed it was coming from an external block list. So, I added that URL (cloudsync-prod.s3.amazonaws.com, with and without "www") to the global whitelist on DNSBL. Still it was blocked, even after an update. So I manually ran a reload, but it was still being blocked. Tried those both a few more times, but still no luck.

      What am I doing wrong here?
      Rules:
      4bf2565d-ab8a-4f4b-b526-2cef78d2b019-image.png

      Log:

      DNSBL Reject HTTPS,Jul 19 16:20:45,cloudsync-prod.s3.amazonaws.com

      Thanks!

      J 1 Reply Last reply Reply Quote 0
      • J
        jdeloach @CyberMinion last edited by jdeloach

        @CyberMinion

        Do you have the "TLD" option enabled in pfBlockerNG/DNSBL? If not, you might give that a try.

        Do not add the "www" to the URL? Add the URL you want to whitelist to the TLD Whitelist screen? If you are unsure about what format to enter the URL, click on the small blue circle with an "i" in it and it will show you what the correct format should be.

        C 1 Reply Last reply Reply Quote 0
        • C
          CyberMinion @jdeloach last edited by

          @jdeloach said in DNSBL: Whitelisted URL still being blocked:

          Do you have the "TLD" option enabled in pfBlockerNG/DNSBL? If not, you might give that a try.

          I do have TLD enabled at present. Are you saying I should try enabling it, or disabling it? I could try disabling it to see if that helps, I suppose, but shouldn't an explicit whitelist rule override that anyway?

          Do not add the "www" to the URL?

          I tried that first, then in desperation tried adding in the "www" entry, in case that helped. Nope.

          Add the URL you want to whitelist to the TLD Whitelist screen?

          Interesting. I didn't try that. I've added this entry in there, and will see if it helps.

          If you are unsure about what format to enter the URL, click on the small blue circle with an "i" in it and it will show you what the correct format should be.

          I'm not using any regex or other dynamic rules, just these static entries. I know they work, because other URLs I have whitelisted unblocked without problems.

          Thanks for the tips!

          S 1 Reply Last reply Reply Quote 0
          • S
            serbus @CyberMinion last edited by

            @CyberMinion said in DNSBL: Whitelisted URL still being blocked:

            I do have TLD enabled at present.

            Hello!

            Make sure to follow the "Click infoblock before enabling this feature!" text under the TLD option. There is a section on TLD Exclusions and whitelisting.

            John

            Lex parsimoniae

            1 Reply Last reply Reply Quote 0
            • First post
              Last post

            Products

            • Platform Overview
            • TNSR
            • pfSense
            • Appliances

            Services

            • Training
            • Professional Services

            Support

            • Subscription Plans
            • Contact Support
            • Product Lifecycle
            • Documentation

            News

            • Media Coverage
            • Press
            • Events

            Resources

            • Blog
            • FAQ
            • Find a Partner
            • Resource Library
            • Security Information

            Company

            • About Us
            • Careers
            • Partners
            • Contact Us
            • Legal
            Our Mission

            We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

            Subscribe to our Newsletter

            Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

            © 2021 Rubicon Communications, LLC | Privacy Policy