Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Snort - Unblock blacklisted hosts from the command line

    Scheduled Pinned Locked Moved pfSense Packages
    4 Posts 2 Posters 6.0k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • A
      atlasis
      last edited by

      Hi,

      I' m testing Snort at Pfsense RC1 and I was wondering if I can unblock the blacklisted IPs from the command line.
      Does anyone which is the configuration file with the blacklisted IPs?

      Thanks in advance

      Antonios

      1 Reply Last reply Reply Quote 0
      • jimpJ
        jimp Rebel Alliance Developer Netgate
        last edited by

        They are held in a temporary table, they can be cleared with:

        pfctl -t snort2c -T flush
        

        or

        pfctl -t snort2c -T delete 
        

        Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 1
        • A
          atlasis
          last edited by

          Thanks a lot jimp!

          By the way, how does snort in pfsense add these rules on the fly?  Is it compiled with snortsam or snort-inline, or do you use another trick?

          1 Reply Last reply Reply Quote 0
          • jimpJ
            jimp Rebel Alliance Developer Netgate
            last edited by

            I'm not sure of the details, it's changed a few times over the years, not sure what the package author has it doing these days.

            Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

            Need help fast? Netgate Global Support!

            Do not Chat/PM for help!

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.