Pfblocker causes system to hang after bare-metal restore



  • Hi everyone,  just wanted to post my experience here with pfblocker causing my system to hang for about 5 minutes during "configuring firewall"  at boot-up

    I started with pfsense 32bit pfsense 2.0.2  with pfblocker, snort and bandwidthd  packages installed config backups done by autoconfigbackup.

    changed ssd's on my system and installed  amd64 2.0.2 version of pfsense.  Installed snort, pfblocker, bandwidthd and autoconfigbackup.  Restored config from previous install.  rebooted.

    System would hang for about 5 minutes at  "configuring firewall"  then boot normally.  tried rebooting again same thing.    removed pfblocker package and rebooted:  issue gone.

    re-installed pfblocker package (configuration was still there)  and rebooted:  issue still gone.

    Not sure what caused this,  but in the future I will be leaving out this package during bare-metal restore and will re-install it after I have restored my system.



  • @Petrus4:

    in the future I will be leaving out this package during bare-metal restore and will re-install it after I have restored my system.

    I'll do this way for all packages(remove, restore config/firwmare upgrade/reinstall packages)…

    Pfblocker uses url table alias lists published on local web server, if it tries to load alias from webserver that is not up, the fetch connections waits a lot (maybe your 5 minutes issue) before timeout.



  • @marcelloc:

    @Petrus4:

    in the future I will be leaving out this package during bare-metal restore and will re-install it after I have restored my system.

    I'll do this way for all packages(remove, restore config/firwmare upgrade/reinstall packages)…

    Pfblocker uses url table alias lists published on local web server, if it tries to load alias from webserver that is not up, the fetch connections waits a lot (maybe your 5 minutes issue) before timeout.

    Ah well that makes sense..  i was reading somewhere that is best to install packages before the config restore .. but what you are doing makes more sense to me.


Log in to reply