Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    (RESOLVED) pfblocker version: 3.1.0_8 pythonmod error

    Scheduled Pinned Locked Moved pfBlockerNG
    3 Posts 2 Posters 474 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      mcury Rebel Alliance
      last edited by mcury

      System: SG-3100 | Version: 22.05 | pfblocker version: 3.1.0_8

      Edit: The problem below only happens when using the DNSBL Mode python. When using DNSBL mode unbound, it doesn't happen.

      Installed this version and noticed that the reports tab is empty, tried to access www.googleadservices.com to confirm and still nothing in the reports tab. Although the site was blocked.

      Checked the system logs and noticed that the python mode can't find the file dnsbl.log, but the file is there. Every time a block happens we can see the logs below being generated.

      82dd7604-7b39-4dd6-b1e5-abb6e96f986c-image.png

      [22.05-RELEASE][root@pfsense.home.arpa]/var/log/pfblockerng: ls -lah
total 48
drwxr-xr-x  2 root     wheel     512B Dec 12 19:56 .
drwxr-xr-x  6 root     wheel     1.0K Dec 12 19:30 ..
-rw-r--r--  1 unbound  unbound     0B Dec 12 19:30 dns_reply.log
-rw-r--r--  1 unbound  unbound     0B Dec 12 19:56 dnsbl.log
-rw-------  1 root     wheel     406B Dec 12 19:44 dnsbl_parsed_error.log
-rw-------  1 root     wheel     911B Dec 12 19:44 extras.log
-rw-r--r--  1 root     wheel     120B Dec 12 19:35 maxmind_ver
-rw-------  1 root     wheel      22K Dec 12 19:44 pfblockerng.log
-rw-r--r--  1 root     wheel       0B Dec 12 19:52 py_error.log
-rw-r--r--  1 unbound  unbound     0B Dec 12 19:30 unified.log

      $ dig @192.168.255.249 www.googleadservices.com

; <<>> DiG 9.18.9 <<>> @192.168.255.249 www.googleadservices.com
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 37178
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 512
;; QUESTION SECTION:
;www.googleadservices.com.	IN	A

;; Query time: 883 msec
;; SERVER: 192.168.255.249#53(192.168.255.249) (UDP)
;; WHEN: Mon Dec 12 19:55:53 -03 2022

      dead on arrival, nowhere to be found.

      GertjanG 1 Reply Last reply Reply Quote 0
      • GertjanG
        Gertjan @mcury
        last edited by Gertjan

        Strange ....

        Yours :

        @mcury said in pfblocker version: 3.1.0_8 pythonmod error:

        -rw-r--r-- 1 unbound unbound 0B Dec 12 19:56 dnsbl.log

        Mine :

        [22.05-RELEASE][admin@pfSense.here.net]/var/log/pfblockerng: ls -alh
total 4511
drwxr-xr-x  2 unbound  unbound    13B Dec 13 10:02 .
drwxr-xr-x  9 root     wheel      85B Dec 13 09:48 ..
-rw-------  1 unbound  unbound    13M Dec 13 10:05 dns_reply.log
-rw-------  1 unbound  unbound   744B Dec 13 10:04 dnsbl.log
-rw-------  1 root     wheel     177K Dec 13 07:07 dnsbl_parsed_error.log
-rw-------  1 root     wheel     754B Dec 13 07:07 error.log
-rw-------  1 root     wheel     8.8K Dec 13 07:07 extras.log
-rw-------  1 root     wheel     1.1M Dec 13 07:07 ip_block.log
-rw-r--r--  1 root     unbound   120B Dec  8 15:00 maxmind_ver
-rw-------  1 root     wheel     705K Dec 13 07:07 pfblockerng.log
-rw-r--r--  1 unbound  unbound     0B Jun 22 16:50 py_error.log
-rw-------  1 unbound  unbound    14M Dec 13 10:05 unified.log

        Dono if it matters, but your file rights are different.

        Can you add a line to dnsbl.log :

        [22.05-RELEASE][admin@pfSense.brit-hotel-fumel.net]/var/log/pfblockerng: echo 'DNSBL-python,Dec 13 10:00:11,kpu.samsungelectronics.com,192.168.1.34,Python,DNSBL_A,DNSBL_ADs_Basic,qqq.samsungelectronics.com,StevenBlack_ADs,+' >> dnsbl.log

        and then check if it was added :

        echo dnsbl.log

        If not, stop all pfblockerng-devel activity.
        Wipe all files in /var/log/pfblockerng/
        Start pfBlockerng-devel

        edit : I think I get it :
        The first two lines :

        drwxr-xr-x  2 root     wheel     512B Dec 12 19:56 .
drwxr-xr-x  6 root     wheel     1.0K Dec 12 19:30 ..

        Your /var/log/pfblockerng/ directory is root owned.
        An unbound user process has no right accessing it.

        I've : see above.

        Strange, as pfBlockerng-devel, when it installs, should take care of things correctly.
        So, remove the package pfBlockerng-devel - then wipe the entire folder /var/log/pfblockerng/
        Install pfBlockerng-devel - and check if :

        drwxr-xr-x 2 unbound unbound 13B Dec 13 10:02 .
drwxr-xr-x 9 root wheel 85B Dec 13 09:48 ..

        The first line is your issue.

        No "help me" PM's please. Use the forum, the community will thank you.
        Edit : and where are the logs ??

        M 1 Reply Last reply Reply Quote 1
        • M
          mcury Rebel Alliance @Gertjan
          last edited by

          @gertjan Hey, really thanks for your tip, helped a lot.
          Its working fine now :)

          [22.05-RELEASE][root@pfsense.home.arpa]/var/log/pfblockerng: ls -lah
total 44
drwxr-xr-x  2 unbound  unbound   512B Dec 13 06:33 .
drwxr-xr-x  6 root     wheel     1.0K Dec 13 06:29 ..
-rw-------  1 unbound  unbound     0B Dec 13 06:32 dns_reply.log
-rw-------  1 unbound  unbound   284B Dec 13 06:33 dnsbl.log
-rw-------  1 root     wheel     406B Dec 13 06:32 dnsbl_parsed_error.log
-rw-------  1 root     wheel      17K Dec 13 06:32 pfblockerng.log
-rw-r--r--  1 unbound  unbound     0B Dec 13 06:32 py_error.log
-rw-------  1 unbound  unbound   284B Dec 13 06:33 unified.log

          dead on arrival, nowhere to be found.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.