pfblocker pfb_dnsbl service not starting
-
@popeel-SSH said in pfblocker pfb_dnsbl service not starting:
I don't want to run any files outside the box as it's in productions.
Outside ? What do you mean ?
My turn :
I deleted /var/unbound/dnsbl_cert.pem
Now, like you :[25.07.1-RELEASE][root@pfSense.bhf.tld]/var/unbound: ll /var/unbound/dnsbl_cert.pem ls: /var/unbound/dnsbl_cert.pem: No such file or directoryI did a full reload (and scrolled trough the resulting log) :
You see what happened (green ^^).
And the file was there again :
[25.07.1-RELEASE][root@pfSense.bhf.tld]/var/unbound: ll /var/unbound/dnsbl_cert.pem -rw-r--r-- 1 root unbound 3359 Oct 8 15:51 /var/unbound/dnsbl_cert.pemFor some reasons, your 'pfSense' can't create a cert ? Or it can create the cert, but can't save it at the /var/unbound/ destination..... Hummm.
I'll take this one @home, study it somewhat to find out the reason what can be the reason. -
Yes. It's not the only file that cannot create. There is a SSL certificate file needs to be in the same location and mine it is not.
Please let me know if you find anything.
I will wait couple of days and maybe rebuild the firewall and see if that does anything.
Thanks for your time.
-
@popeel-SSH said in pfblocker pfb_dnsbl service not starting:
Yes. It's not the only file that cannot create. There is a SSL certificate file needs to be in the same location and mine it is not.
The "dnsbl_cert.pem" is the web servers (lighttpd) certificate file.
Other files are missing ? -
@Gertjan Yes. As you can see my screenshot of the unbound directory.
I am planning to rebuild the pfsense and try that. I will update you.
Thanks
-
I have reinstall the firewall from the fresh and installed pfBlocker with minimal settings, and it is functioning properly.
After that, I performed a factory reset on the firewall, restore our config.xml, and installed pfBlocker NG with the same minimal settings, but I encountered the same error, and the certificate was not created.
Not sure what is in my config should stop this ??
These are the files in my /var/unbound
-
This :
@popeel-SSH said in pfblocker pfb_dnsbl service not starting:
performed a factory reset on the firewall, restore our config.xml
is a null operation.
Your "pfSense" as installed, is always the same.When you discard your own setup, and go to the default setup, and re assign interface, and make it work again (LAN+WAN), and then import your previous config file, your back at square zero.
-
I tried that too.
PFSence factry default> setup the firewall basic (without any of our config)> Install pfblockerNG run the wizard with only WAN and LAN > both pfblocker and DNSBL service runs fine and start up okay.
When I restore the config to the firewall it's then stop working.
It's something in our config causing this to stop.
Let's see pfblocker support can help on this.
I will keep updating.
Thanks
-
-
If anyone have any solution for this please let me know.
I have had no luck with anything.
Thanks
-
It's an issue with VIP creation code in PFBlockerNG.
PFblockerNG support is working to remove the VIP creation code in pfBlockerNG and leaving that to pfSense to handle. Stay tuned.
https://github.com/pfsense/FreeBSD-ports/pull/1427
