Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Bypass pfBlocker for Clients

    Scheduled Pinned Locked Moved pfBlockerNG
    6 Posts 4 Posters 936 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • H
      Hans 1
      last edited by

      I'm trying to bypass a few Clients from going thru pfBlocker. I looked at Topic "Bypassing DNSBL for specific IPs", "Advice - Allowing client to bypass pfblocker-ng" and "Bypass pfblockerng for certain machines" and non work. I have to say the steps are all complicated, with multiple chances in multiple places that don't make sense. My background is Linux +25 years and usually exceptions are handled via a conf file. Is there an easier no brain-er option or one that works without going thru all sorts of hurdles, I just want to "get-her done".

      S 1 Reply Last reply Reply Quote 0
      • S
        SteveITS Galactic Empire @Hans 1
        last edited by

        @hans-1 If you expand the "Python Group Policy" section, you can add IPs to "Bypass IPs." Keep in mind IPv6 devices often use temporary IPs so it's not perfect.

        Pre-2.7.2/23.09: Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
        When upgrading, allow 10-15 minutes to restart, or more depending on packages and device speed.
        Upvote đź‘Ť helpful posts!

        Bob.DigB 1 Reply Last reply Reply Quote 0
        • Bob.DigB
          Bob.Dig LAYER 8 @SteveITS
          last edited by Bob.Dig

          @steveits It is not working here, so might be a general bug.


          Screenshot 2022-10-08 202910.png

          M S 2 Replies Last reply Reply Quote 0
          • M
            mcury Rebel Alliance @Bob.Dig
            last edited by

            @bob-dig Python bypass is working fine here.
            22.05 pfblockerng 3.1.0_4 with python mode enabled

            dead on arrival, nowhere to be found.

            1 Reply Last reply Reply Quote 0
            • S
              SteveITS Galactic Empire @Bob.Dig
              last edited by

              @bob-dig Did you run an update after adding the IP? IPv6 isn’t being used? Flush any DNS cache on the client?

              Pre-2.7.2/23.09: Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
              When upgrading, allow 10-15 minutes to restart, or more depending on packages and device speed.
              Upvote đź‘Ť helpful posts!

              Bob.DigB 1 Reply Last reply Reply Quote 0
              • Bob.DigB
                Bob.Dig LAYER 8 @SteveITS
                last edited by

                @steveits said in Bypass pfBlocker for Clients:

                @bob-dig Did you run an update after adding the IP? IPv6 isn’t being used? Flush any DNS cache on the client?

                Yes to all of that.

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post
                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.