Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Using Large List on netgate 1100

    Scheduled Pinned Locked Moved pfBlockerNG
    3 Posts 3 Posters 540 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      ThePokyWizard
      last edited by

      I have a netgate 1100 and I thought of using the UT1_adult list to block access to users who try to see this type of content.

      As his hardware is weak (1GB of RAM), I was afraid he might not be able to handle it. Because just downloading the list makes the CPU stay at 99%.

      Can I use this list? No yes, with TLD enabled?

      Or should I use another option? If I use another option, how can I bar this type of content with pgBlockerNG-devel?

      S 1 Reply Last reply Reply Quote 0
      • S
        SteveITS Galactic Empire @ThePokyWizard
        last edited by

        @thepokywizard It looks like that is 4.5 million entries? Do you have deduplication turned off? The CPU on the 1100 is not exactly fast... Make sure your "Firewall Maximum Table Entries" setting in System/Advanced is at least 5-6 million.

        Alternately you might forward DNS queries to some sort of "kid safe" DNS servers. I don't know any to suggest, though.

        Either way you probably need to block DNS over HTTP so browsers don't bypass your DNS server/router.

        Pre-2.7.2/23.09: Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
        When upgrading, allow 10-15 minutes to restart, or more depending on packages and device speed.
        Upvote 👍 helpful posts!

        R 1 Reply Last reply Reply Quote 0
        • R
          rcoleman-netgate Netgate @SteveITS
          last edited by

          @steveits said in Using Large List on netgate 1100:

          The CPU on the 1100 is not exactly fast

          The CPU is half the battle here. That large list will quickly chew up the remains of the 1GB RAM.

          Ryan
          Repeat, after me: MESH IS THE DEVIL! MESH IS THE DEVIL!
          Requesting firmware for your Netgate device? https://go.netgate.com
          Switching: Mikrotik, Netgear, Extreme
          Wireless: Aruba, Ubiquiti

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.