• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

how to bypass pfblockerng-devel certain ip.

Scheduled Pinned Locked Moved pfBlockerNG
11 Posts 3 Posters 1.4k Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • G
    Gertjan @jenskiebee
    last edited by Jun 10, 2021, 10:09 AM

    @jenskiebee

    You use :

    e9e464b2-c798-482f-b8eb-205c28158a95-image.png

    so you could Bypassing DNSBL for specific IPs

    Or, also possible, I did not understand :

    @jenskiebee said in how to bypass pfblockerng-devel certain ip.:

    My problem is not working

    No "help me" PM's please. Use the forum, the community will thank you.
    Edit : and where are the logs ??

    J 2 Replies Last reply Jun 10, 2021, 12:21 PM Reply Quote 0
    • J
      jenskiebee @Gertjan
      last edited by Jun 10, 2021, 12:21 PM

      @gertjan said in how to bypass pfblockerng-devel certain ip.:

      @jenskiebee

      You use :

      e9e464b2-c798-482f-b8eb-205c28158a95-image.png

      so you could Bypassing DNSBL for specific IPs

      Or, also possible, I did not understand :

      @jenskiebee said in how to bypass pfblockerng-devel certain ip.:

      My problem is not working

      Oh sorry i cant edit my post..

      Yes bro, i use that pfblockerng version.
      My problem is i cant bypass the dnsbl website.
      Example ip of my pc unit is 192.168.1.30 i want to exclude in blocking.

      1 Reply Last reply Reply Quote 0
      • J
        jenskiebee @Gertjan
        last edited by Jun 10, 2021, 12:27 PM

        @gertjan

        I already use the setting of Bypassing DNSBL for specific IPs.
        But notworking my pc/ip still block.

        G K 2 Replies Last reply Jun 10, 2021, 1:28 PM Reply Quote 0
        • G
          Gertjan @jenskiebee
          last edited by Gertjan Jun 10, 2021, 1:32 PM Jun 10, 2021, 1:28 PM

          @jenskiebee said in how to bypass pfblockerng-devel certain ip.:

          But notworking my pc/ip still block.

          I'm using pfSense 2.5.1 with the latests pfB 3.0.0_16

          I looked up a blocked domain in one of the feeds I'm using : cash_lord.com in one of the feeds I'm using.

          a nslookup test for cash_lord.com showed me the domain was blocked :

          0..0.0.0
          

          edit : Yes, 0.0.0.0 as I'm not trying to return 10.10.10.1 which is the default 'buiknd-in' "DNSBL Webserver" as it can't do anything if I'm redirected to https. Knowing that every site is https these days, etc etc etc. I just chose for 0.0.0.0 which does the job just fine with far less overhead.

          a4131e56-eed2-4307-adf5-18263f46d361-image.png

          Time for a test.

          My PC uses LAN IP 192.168.1.2 and 2001:470:dead:beef:2::88
          So I entered this :

          3aefb6c6-0423-4a82-bfdc-e149a36914c3-image.png

          I flushed my local DNS cache with

          ipconfig /flushdns
          

          and did the test again. This time it did return an IP :

          Address:  154.220.169.30
          

          So, it really looks like it's working for me.

          My PC, as it's on the list, isn't filtered by pfB any more.

          No "help me" PM's please. Use the forum, the community will thank you.
          Edit : and where are the logs ??

          J 1 Reply Last reply Jun 11, 2021, 1:31 AM Reply Quote 0
          • J
            jenskiebee @Gertjan
            last edited by Jun 11, 2021, 1:31 AM

            @gertjan i try this setting "unbound python mode" dnsbl its working, but the other problem is when i flushed dns the other pc that i want to remain filtered by pfb same still can access again.
            because some of the user/employee know simple network troubleshot like release , renew and flushdns also...

            49507a2f-6cbf-4444-9af9-611cb8ac662b-image.png

            G 1 Reply Last reply Jun 11, 2021, 7:17 AM Reply Quote 0
            • K
              KOM @jenskiebee
              last edited by KOM Jun 11, 2021, 1:54 AM Jun 11, 2021, 1:53 AM

              @Gertjan

              dead:beef

              Heh

              G 1 Reply Last reply Jun 11, 2021, 7:20 AM Reply Quote 0
              • G
                Gertjan @jenskiebee
                last edited by Jun 11, 2021, 7:17 AM

                @jenskiebee said in how to bypass pfblockerng-devel certain ip.:

                problem is when i flushed dns the other pc that i want to remain filtered by pfb same still can access again.

                What do you mean ?

                Do you know what

                ipconfig /flushdns
                

                does ?

                And why I used this command on my PC in the example above ?

                @jenskiebee said in how to bypass pfblockerng-devel certain ip.:

                "unbound python mode"

                This mode needs to be used to use the "Python Group Policy" function.

                No "help me" PM's please. Use the forum, the community will thank you.
                Edit : and where are the logs ??

                J 1 Reply Last reply Jun 11, 2021, 9:01 AM Reply Quote 0
                • G
                  Gertjan @KOM
                  last edited by Jun 11, 2021, 7:20 AM

                  @kom said in how to bypass pfblockerng-devel certain ip.:

                  @Gertjan

                  dead:beef

                  Heh

                  A way to obscure an IPv6 - my 2001:470:dead:beef:2::88 is local and global ;)

                  No "help me" PM's please. Use the forum, the community will thank you.
                  Edit : and where are the logs ??

                  1 Reply Last reply Reply Quote 0
                  • J
                    jenskiebee @Gertjan
                    last edited by Jun 11, 2021, 9:01 AM

                    @gertjan yeahhh i used like you said.
                    9fb1ccd5-0c71-4625-a3db-49f165743cff-image.png
                    79fcf6e9-730d-4e2e-9fc3-381b0c18ba3e-image.png

                    G 1 Reply Last reply Jun 11, 2021, 1:25 PM Reply Quote 0
                    • G
                      Gertjan @jenskiebee
                      last edited by Jun 11, 2021, 1:25 PM

                      @jenskiebee

                      Keep in mind : it's a DNSBL bypass.
                      IP based feeds will still block, as these are just huge aliases used in firewall rules.

                      See also here and here.

                      It's still in the ⚡ phase of developing.

                      No "help me" PM's please. Use the forum, the community will thank you.
                      Edit : and where are the logs ??

                      1 Reply Last reply Reply Quote 0
                      11 out of 11
                      • First post
                        11/11
                        Last post
                      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
                        This community forum collects and processes your personal information.
                        consent.not_received