Netgate blocked my public IP on ACB
-
Netgate has blocked my public IP on ACB. Not a VPN IP, I mean my personal, static, public IP.
I opened a TAC and the technician told me that the IP was blocked “due to too many queries to our backend from that IP, and not only ACB” (whatever that means) and cannot be unblocked. End of explanation.
So now I can't update my build or download any packages from the Package Manager, making my firewall a useless box. Unbelievable!
They didn't even want to explain what I did wrong (probably too many backups uploaded, but the “backup on every change” setting is there to be used, I guess, and that "not only ACB" is making me wonder what on earth they were referring to), nor did they show any desire to solve my problem.
I'm really speechless.Anyone else in my situation?
-
Hmm, it would be very hard to hit any sort of limit on the ACB backend. There is a limit on the pkg repos if for some reason the firewall is hammering them.
What error are you seeing?
Is it the same public IP you are connecting to the forum from?
-
Oh I see it. Yes your IP was blocked because it was hammering the pkg repos. 11000 requests in 24hrs!
That was done back in July though. Was ACB working more recently?
Do you have multiple firewalls using that public IP?
-
Hey @stephenw10, thank you for answering and checking! Appreciate it.
11,000 requests in 24 hours is crazy!!!
It wasn't intended, nor was it obviously done by me personally (11,000 clicks in one day is record-breaking).Anyway, no, my public IP is managed by a single pfSense...
Have you had similar experiences? What could it have been? I don't want it to happen again.
But above all, can it be fixed?Thank you very much again.
-
@stephenw10 forgot to say: I don't know if it was working, I realized today it is not.
I can't, obviously, check my uploaded backup to verify they worked. -
Mmm, OK found your ticket. It does look like it hasn't checked in since July 12th. Does it show a very large number of alerts?
Can you think of any reason there might have been such a high request rate? Multiple firewalls behind it is most likely.
-
@stephenw10 Yes, it showed a high number of alerts saying “An error occurred while uploading the encrypted pfSense configuration to https://acb.netgate.com/save (Connection timed out)”.
I noticed it today because I wanted to upgrade the build and install some packages.I can confirm that I only manage one pfSense, with a fairly standard segmented LAN behind it.
Today I ran several analyses to see if there were any rogue devices on my network, but I didn't find anything, and in any case, I don't think that even if there were, it would hit the ACB repositories, but never knows...
I really don't know what to think.
-
It wasn't ACB it was hitting it was the repo data servers. As though it was running 'pfSense-repoc' continually, or multiple devices running it. Let me see....
