IP-Blocklist



  • I have read all thread regarding to ipblocklist package, but didn't find the solution for the issue appeared some time here.

    Have 2 pfsense boxes 2.0 and 1.2.3. Installed on both ipblocklist package. On 1.2.3 it works just fine, on 2.0 I got this error:

    Current Status = NOT running
    /tmp/rules.debug:31: Rules must be in order: options, normalization, queueing, translation, filtering
    You are blocking 0 Networks/IPs

    I don't know how to get that fixed, as I'm not a bsd expert. I deinstalled the package, rebooted, installed it back - got the same result.
    Any advise to right direction of getting it working to pfsense 2.0 ?

    Thanks.



  • @slagr:

    I have read all thread regarding to ipblocklis package, but didn't find the solution for the issue appeared some time here.

    Have 2 pfsense boxes 2.0 and 1.2.3. Installed on both ipblocklist package. On 1.2.3 it works just fine, on 2.0 I got this error:

    Current Status = NOT running
    /tmp/rules.debug:31: Rules must be in order: options, normalization, queueing, translation, filtering
    You are blocking 0 Networks/IPs

    I don't know how to get that fixed, as I'm not a bsd expert. I deinstalled the package, rebooted, installed it back - got the same result.
    Any advise to right direction of getting it working to pfsense 2.0 ?

    Thanks.

    Try rebooting. If that doesn't work then list your installed packages.



  • @tommyboy180:

    Try rebooting. If that doesn't work then list your installed packages.

    Thanks Tom,

    I tried to reboot as I stated in my post. Removed, rebooted, installed back - the same results. Did a few times.

    Here is my installed packages list (a lot of them are not relevant to the problem I think):

    GeoIP-1.4.8_1                                                                                                                                                
    .. list of system packages was cut …
    xproto-7.0.22



  • Sorry I meant to just list your installed pfsense packages.



  • @tommyboy180:

    Sorry I meant to just list your installed pfsense packages.

    Bandwithd, Cron, IP-Blocklist, snort, RRD Summary.



  • @slagr:

    @tommyboy180:

    Sorry I meant to just list your installed pfsense packages.

    Bandwithd, Cron, IP-Blocklist, snort, RRD Summary.

    Anyone can advise of what's wrong with that setup ?  We run pfsense 2.0. Reboot didn't help. Thanks.



  • Sorry. I have plans to take a look at it. My work is undergoing an inspection that takes weeks so my priorities have temporarily shifted during this time. Hopefully I can take a look at it soon.



  • @firbc:

    Hi,

    is there any why to allow connection to blocked IP's on port 80? And if there is any way to manualy add my own IP's to whitelist? Let says that I like to unlock only one specific IP which is in blocklist.

    This feature is implemented in pfBlocker package.

    You can assign lists to populate an alias and then create your own rules if you want.



  • @slagr:

    I have read all thread regarding to ipblocklist package, but didn't find the solution for the issue appeared some time here.

    Have 2 pfsense boxes 2.0 and 1.2.3. Installed on both ipblocklist package. On 1.2.3 it works just fine, on 2.0 I got this error:

    Current Status = NOT running
    /tmp/rules.debug:31: Rules must be in order: options, normalization, queueing, translation, filtering
    You are blocking 0 Networks/IPs

    I don't know how to get that fixed, as I'm not a bsd expert. I deinstalled the package, rebooted, installed it back - got the same result.
    Any advise to right direction of getting it working to pfsense 2.0 ?

    Thanks.

    Uninstall ipblocklist on 2.0 and try pfBlocker package.



  • Level1 list does not looks like bad guys, why its blocked by default?



  • I added the level1 list to demo the syntax of the URL. I constantly get questions on the forum why a URL isn't working and it's always because it's not the direct URL. Adding this as default has helped cut down on those problems.

    If we can use wget or some option with fetch to follow the URL then this problem will be a thing of the past. For now though, the direct URL is required.



  • I've got a quick question about the package.  Does IP Blocklist auto-update the block lists?  Other than that, thanks for a great package!



  • If you are using pfsense 2.0,

    pfblocker is joining countryblock and ipblocklist.

    list update will be released very soon on this new package.



  • I've just updated from pfsense 2.0 to 2.01. Now ipblocklist isn't working any more.
    No problem because i've installed pfblocker.
    But there's still a link to ipblocklist in the menu. How do I remove it and how do I now for sure ipblock list is uninstalled.
    Thanx in advance



  • Uninstall pfBlocker … maybe Ipblocklist will go away



  • @RonpfS:

    Uninstall pfBlocker … maybe Ipblocklist will go away

    it will not.  ;)

    Clean ipblocklist table on diagnostics -> tables.



  • @marcelloc:

    @RonpfS:

    Uninstall pfBlocker … maybe Ipblocklist will go away

    it will not.  ;)

    Clean ipblocklist table on diagnostics -> tables.

    there is no ipblocklist table in tables.
    Does that mean ipblocklist is gone?

    And how do I remove the ipblocklist link from the menu?



  • You may need to edit config.xml file (with care) and remove ipblocklist entries and reboot.



  • Thanx that did the trick  :)



  • I cannot remove ip-blocklist in 1.2.2. Is there a way to remove or uninstall it using terminal?  Thanks


Locked