Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Potential bug with python group policy whitelist feature, makes queries unfiltered globally.

    Scheduled Pinned Locked Moved pfBlockerNG
    2 Posts 2 Posters 159 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C
      chrcoluk
      last edited by

      Guys, I would appreciate if anyone could confirm this behaviour, I reported it on reddit but no response from bbcan17.

      Setup a DNSBL.
      Enable python, python control, python dnsbl, python group policy,
      In the python group policy whitelist box add an IP of a device using pfsense DNS.
      Force reload/update so everything is live.

      Make sure the cache is cleared when doing this test.

      Do a lookup of a filtered domain using a device that is NOT whitelisted, you should get filtered response.
      Now do a lookup of the same filtered domain on the whitelisted device, and you should get the unfiltered response.
      Now do the same lookup again on a device that is NOT whitelisted, and if it behaves the same way as mine, you will get a unfiltered response.

      From what I can observe this will persist until the next time the cache is cleared.

      pfSense CE 2.7.2

      GertjanG 1 Reply Last reply Reply Quote 1
      • GertjanG
        Gertjan @chrcoluk
        last edited by

        @chrcoluk

        Yep.
        Is known : Problem with Python Group Policy - Cached Domains

        No "help me" PM's please. Use the forum, the community will thank you.
        Edit : and where are the logs ??

        1 Reply Last reply Reply Quote 1
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.