Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    pfblockerNG Question(s)

    Scheduled Pinned Locked Moved pfBlockerNG
    26 Posts 3 Posters 2.6k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • D
      djtech2k
      last edited by

      This post is deleted!
      1 Reply Last reply Reply Quote 0
      • D
        djtech2k
        last edited by

        I thought you only wanted that specific section. Here is the entire latest force reload section.

         [ Force Reload Task - DNSBL ]
 UPDATE PROCESS START [ v3.2.0_20 ] [ 01/10/25 08:35:44 ]
===[  DNSBL Process  ]================================================
 Loading DNSBL Statistics... completed
 Loading DNSBL SafeSearch... disabled
 Loading DNSBL Whitelist... completed
[ EasyList ]			 Reload . completed ..
  ----------------------------------------------------------------------
  Orig.    Unique     # Dups     # White    # TOP1M    Final                
  ----------------------------------------------------------------------
  29672    29672      0          0          0          29672                
  ----------------------------------------------------------------------
  IPv4 count=101
[ EasyPrivacy ]			 Reload . completed ..
  ----------------------------------------------------------------------
  Orig.    Unique     # Dups     # White    # TOP1M    Final                
  ----------------------------------------------------------------------
  41424    41423      0          0          0          41423                
  ----------------------------------------------------------------------
  IPv4 count=8
Saving DNSBL statistics... completed [ 01/10/25 08:35:45 ]
------------------------------------------------------------------------
Assembling DNSBL database...... completed
Reloading Unbound Resolver (DNSBL python).
Stopping Unbound Resolver.
Unbound stopped in 2 sec.
Additional mounts (DNSBL python):
  No changes required.
Starting Unbound Resolver... completed [ 01/10/25 08:35:47 ]
Resolver cache restored
DNSBL update [ 71095 | PASSED  ]... completed
------------------------------------------------------------------------
===[  GeoIP Process  ]============================================
===[  IPv4 Process  ]=================================================
[ Abuse_Feodo_C2_v4 ]		 exists.
[ Abuse_SSLBL_v4 ]		 exists.
[ CINS_army_v4 ]		 exists.
[ ET_Block_v4 ]			 exists.
[ ET_Comp_v4 ]			 exists.
[ ISC_Block_v4 ]		 exists.
[ Spamhaus_Drop_v4 ]		 exists.
[ Talos_BL_v4 ]			 Downloading update .. 200 OK. completed ..
[ pfB_PRI1_v4 Talos_BL_v4 ] No IPs found! Ensure only IP based Feeds are used! ]
[ BDS_TOR_v4 ]			 exists. [ 01/10/25 08:35:48 ]
[ DMe_TOR_EN_v4 ]		 exists.
[ ET_TOR_All_v4 ]		 exists.
[ ISC_TOR_v4 ]			 exists.
[ PROJECT_TOR_EN_v4 ]		 exists.
[ RUECKGR_TOR_All_v4 ]		 exists.
[ SFS_IPs_v4 ]			 exists.
[ DNSBLIP_v4 ]			 Downloading update .. completed ..
  Aggregation Stats:
  ------------------
  Original Final      
  ------------------
  109      72         
  ------------------
  ------------------------------
  Original Master     Final     
  ------------------------------
  109      72         72          [ Pass ] 
  -----------------------------------------------------------------
===[  Aliastables / Rules  ]==========================================
No changes to Firewall rules, skipping Filter Reload
 Updating: pfB_DNSBLIP_v4
no changes.
Saving config changes... completed
===[  Kill States  ]==================================================
No matching states found
======================================================================
===[ FINAL Processing ]=====================================
   [ Original IP count   ]  [ 207257 ]
   [ Final IP Count  ]  [ 174653 ]
===[ Deny List IP Counts ]===========================
  174654 total
  150429 /var/db/pfblockerng/deny/SFS_IPs_v4.txt
   11928 /var/db/pfblockerng/deny/CINS_army_v4.txt
    5404 /var/db/pfblockerng/deny/BDS_TOR_v4.txt
    3651 /var/db/pfblockerng/deny/ET_TOR_All_v4.txt
    1322 /var/db/pfblockerng/deny/ET_Block_v4.txt
     565 /var/db/pfblockerng/deny/DMe_TOR_EN_v4.txt
     562 /var/db/pfblockerng/deny/ET_Comp_v4.txt
     403 /var/db/pfblockerng/deny/RUECKGR_TOR_All_v4.txt
     294 /var/db/pfblockerng/deny/ISC_TOR_v4.txt
      72 /var/db/pfblockerng/deny/DNSBLIP_v4.txt
       9 /var/db/pfblockerng/deny/Spamhaus_Drop_v4.txt
       7 /var/db/pfblockerng/deny/ISC_Block_v4.txt
       6 /var/db/pfblockerng/deny/PROJECT_TOR_EN_v4.txt
       1 /var/db/pfblockerng/deny/Abuse_SSLBL_v4.txt
       1 /var/db/pfblockerng/deny/Abuse_Feodo_C2_v4.txt
====================[ Empty Lists w/127.1.7.7 ]==================
Abuse_SSLBL_v4.txt
===[ DNSBL Domain/IP Counts ] ===================================
   71204 total
   41423 /var/db/pfblockerng/dnsbl/EasyPrivacy.txt
   29672 /var/db/pfblockerng/dnsbl/EasyList.txt
     101 /var/db/pfblockerng/dnsbl/EasyList_v4.ip
       8 /var/db/pfblockerng/dnsbl/EasyPrivacy_v4.ip
====================[ IPv4/6 Last Updated List Summary ]==============
Jan 3	06:40	Abuse_SSLBL_v4
Jan 9	00:30	ET_Block_v4
Jan 9	06:35	Spamhaus_Drop_v4
Jan 9	11:54	BDS_TOR_v4
Jan 9	17:15	ET_TOR_All_v4
Jan 9	17:15	ET_Comp_v4
Jan 10	06:40	ISC_TOR_v4
Jan 10	06:52	CINS_army_v4
Jan 10	07:00	ISC_Block_v4
Jan 10	07:30	PROJECT_TOR_EN_v4
Jan 10	07:31	DMe_TOR_EN_v4
Jan 10	07:55	Abuse_Feodo_C2_v4
Jan 10	07:55	SFS_IPs_v4
Jan 10	08:01	RUECKGR_TOR_All_v4
Jan 10	08:35	Talos_BL_v4
Jan 10	08:35	DNSBLIP_v4
====================[ DNSBL Last Updated List Summary ]==============
Jan 9	21:55	EasyPrivacy
Jan 9	23:54	EasyList
===============================================================
Database Sanity check [  PASSED  ]
------------------------
Masterfile/Deny folder uniq check
Deny folder/Masterfile uniq check
Sync check (Pass=No IPs reported)
----------
Alias table IP Counts
-----------------------------
  174654 total
  150429 /var/db/aliastables/pfB_SFS_v4.txt
   13830 /var/db/aliastables/pfB_PRI1_v4.txt
   10323 /var/db/aliastables/pfB_TOR_v4.txt
      72 /var/db/aliastables/pfB_DNSBLIP_v4.txt
pfSense Table Stats
-------------------
table-entries hard limit   400000
Table Usage Count         174668
 UPDATE PROCESS ENDED [ 01/10/25 08:35:50 ]
        1 Reply Last reply Reply Quote 0
        • S SteveITS referenced this topic on
        • D
          djtech2k
          last edited by

          I still have not figured out why my packets are resolving to 0.0.0.0 but its more of a curiosity thing at this point. resolving to 0.0.0.0 still blocks it, so that's my goal. Just would like to figure out why it is going there and not to the 10.x webserver.

          I have been slowly adding more feeds to pfblocker and I have been trying to check out the logs to see how much is being blocked, and also how the logs look. I have been noticing that a few feeds are repeatedly failing to update both on the scheduled update and when I force it manually. When I go to the feed listed in pfsense, I am able to click the link and download the feed just fine but in the logs it says the updates fail because it can't download the feed.

          Are any of you seeing this behavior and is it normal? For example, I am getting it on Talos_BL_v4 and DMe_TOR_EN_v4.

          S 1 Reply Last reply Reply Quote 0
          • S
            SteveITS Galactic Empire @djtech2k
            last edited by

            @djtech2k Talos basically isn't valid anymore, see thread
            https://forum.netgate.com/topic/190566/pfb_pri1_v4-talos_bl_v4-download-fail

            Pre-2.7.2/23.09: Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
            When upgrading, allow 10-15 minutes to restart, or more depending on packages and device speed.
            Upvote 👍 helpful posts!

            1 Reply Last reply Reply Quote 0
            • D
              djtech2k
              last edited by

              OK thanks. Good to know. I will remove it then.

              1 Reply Last reply Reply Quote 0
              • D
                djtech2k
                last edited by

                I recently added the ISC_Miner list and looks like it may be dead too.

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post
                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.