PfBlockerNG - UT1 not loading

While setting DNSBL and after updating it is giving me this error :

image1843×937 40.6 KB

I think something is blocking it to download or I am not sure about it can someone please help ?

Update, While re-configuring Pfblocker /var filled up

Log File :

PFB_FILTER - 2 | alerts refresh [ 06/10/23 01:16:57 ] Invalid URL (alerts tab) [ https://100.94.206.53:10443/ ]
PFB_FILTER - 2 | alerts refresh [ 06/10/23 01:17:12 ] Invalid URL (alerts tab) [ https://100.94.206.53:10443/ ]
PFB_FILTER - 2 | alerts refresh [ 06/10/23 01:17:16 ] Invalid URL (alerts tab) [ https://100.94.206.53:10443/ ]
PFB_FILTER - 2 | alerts refresh [ 06/10/23 01:17:23 ] Invalid URL (alerts tab) [ https://100.94.206.53:10443/ ]
PFB_FILTER - 2 | alerts refresh [ 06/10/23 01:18:35 ] Invalid URL (alerts tab) [ https://100.94.206.53:10443/ ]
PFB_FILTER - 2 | alerts refresh [ 06/10/23 01:20:31 ] Invalid URL (alerts tab) [ https://100.94.206.53:10443/ ]
PFB_FILTER - 2 | alerts refresh [ 06/10/23 01:24:37 ] Invalid URL (alerts tab) [ https://100.94.206.53:10443/ ]
PFB_FILTER - 2 | alerts refresh [ 06/10/23 01:26:03 ] Invalid URL (alerts tab) [ https://100.94.206.53:10443/ ]
PFB_FILTER - 2 | alerts refresh [ 06/10/23 01:26:08 ] Invalid URL (alerts tab) [ https://100.94.206.53:10443/ ]
PFB_FILTER - 2 | alerts refresh [ 06/10/23 01:26:25 ] Invalid URL (alerts tab) [ https://100.94.206.53:10443/ ]
PFB_FILTER - 2 | alerts refresh [ 06/10/23 01:26:29 ] Invalid URL (alerts tab) [ https://100.94.206.53:10443/ ]
PFB_FILTER - 2 | alerts refresh [ 06/10/23 01:32:00 ] Invalid URL (alerts tab) [ https://100.94.206.53:10443/ ]
PFB_FILTER - 2 | alerts refresh [ 06/10/23 01:32:05 ] Invalid URL (alerts tab) [ https://100.94.206.53:10443/ ]
PFB_FILTER - 2 | alerts refresh [ 06/10/23 01:32:07 ] Invalid URL (alerts tab) [ https://100.94.206.53:10443/ ]
PFB_FILTER - 2 | alerts refresh [ 06/10/23 01:32:14 ] Invalid URL (alerts tab) [ https://100.94.206.53:10443/ ]
PFB_FILTER - 2 | alerts refresh [ 06/10/23 01:32:32 ] Invalid URL (alerts tab) [ https://100.94.206.53:10443/ ]

[ pfB_PRI1_v4 - Talos_BL_v4 ] Download FAIL [ 06/10/23 19:13:03 ]
DNSBL, Firewall, and IDS (Legacy mode only) are not blocking download.
[ 06/10/23 19:13:03 ]
Restoring previously downloaded file contents… [ 06/10/23 19:13:03 ]
PFB_FILTER - 2 | alerts refresh [ 06/10/23 20:42:18 ] Invalid URL (alerts tab) [ https://100.94.206.53:10443/ ]
PFB_FILTER - 2 | alerts refresh [ 06/10/23 20:45:05 ] Invalid URL (alerts tab) [ https://100.94.206.53:10443/ ]
PFB_FILTER - 2 | alerts refresh [ 06/10/23 20:45:30 ] Invalid URL (alerts tab) [ https://100.94.206.53:10443/ ]
PFB_FILTER - 2 | alerts refresh [ 06/10/23 20:45:37 ] Invalid URL (alerts tab) [ https://100.94.206.53:10443/ ]
PFB_FILTER - 2 | alerts refresh [ 06/10/23 20:45:40 ] Invalid URL (alerts tab) [ https://100.94.206.53:10443/ ]
PFB_FILTER - 2 | alerts refresh [ 06/10/23 20:45:44 ] Invalid URL (alerts tab) [ https://100.94.206.53:10443/ ]
PFB_FILTER - 2 | alerts refresh [ 06/10/23 20:46:58 ] Invalid URL (alerts tab) [ https://100.94.206.53:10443/ ]
PFB_FILTER - 2 | alerts refresh [ 06/10/23 20:51:55 ] Invalid URL (alerts tab) [ https://100.94.206.53:10443/ ]
PFB_FILTER - 2 | alerts refresh [ 06/10/23 20:52:05 ] Invalid URL (alerts tab) [ https://100.94.206.53:10443/ ]
PFB_FILTER - 2 | alerts refresh [ 06/10/23 20:52:08 ] Invalid URL (alerts tab) [ https://100.94.206.53:10443/ ]
PFB_FILTER - 2 | alerts refresh [ 06/10/23 20:52:20 ] Invalid URL (alerts tab) [ https://100.94.206.53:10443/ ]
PFB_FILTER - 2 | pfb_download_failure [ 06/10/23 21:44:45 ] Invalid URL (cannot resolve) [ http://www.shallalist.de/Downloads/shallalist.tar.gz ]
Failed [ 06/10/23 21:44:45 ]

[ DNSBL_UT1 - UT1_bitcoin ] Download FAIL [ 06/10/23 21:45:01 ]
Local File Failure
[ 06/10/23 21:45:01 ]

[ DNSBL_UT1 - UT1_hacking ] Download FAIL [ 06/10/23 21:45:01 ]
Local File Failure
[ 06/10/23 21:45:01 ]

[ DNSBL_UT1 - UT1_lingerie ] Download FAIL [ 06/10/23 21:45:01 ]
Local File Failure
[ 06/10/23 21:45:01 ]

[ DNSBL_UT1 - UT1_malware ] Download FAIL [ 06/10/23 21:45:01 ]
Local File Failure
[ 06/10/23 21:45:01 ]

[ DNSBL_UT1 - UT1_phishing ] Download FAIL [ 06/10/23 21:45:01 ]
Local File Failure
[ 06/10/23 21:45:01 ] Local File Failure
[ 06/10/23 21:45:01 ]

[ DNSBL_UT1 - UT1_bitcoin ] Download FAIL [ 06/10/23 22:26:15 ]
Local File Failure
[ 06/10/23 22:26:15 ]

[ DNSBL_UT1 - UT1_hacking ] Download FAIL [ 06/10/23 22:26:15 ]
Local File Failure
[ 06/10/23 22:26:15 ]

[ DNSBL_UT1 - UT1_lingerie ] Download FAIL [ 06/10/23 22:26:15 ]
Local File Failure
[ 06/10/23 22:26:15 ]

[ DNSBL_UT1 - UT1_malware ] Download FAIL [ 06/10/23 22:26:15 ]
Local File Failure
[ 06/10/23 22:26:15 ]

[ DNSBL_UT1 - UT1_phishing ] Download FAIL [ 06/10/23 22:26:15 ]
Local File Failure
[ 06/10/23 22:26:15 ]

[ DNSBL_UT1 - UT1_sexual_education ] Download FAIL [ 06/10/23 22:26:15 ]
Local File Failure
[ 06/10/23 22:26:15 ]
DNSBL FAIL - Skipped! Use previous data, if found:
[ 06/10/23 22:26:24 ]

[ DNSBL_UT1 - UT1_bitcoin ] Download FAIL [ 06/10/23 22:31:30 ]
Local File Failure
[ 06/10/23 22:31:30 ]

[ DNSBL_UT1 - UT1_hacking ] Download FAIL [ 06/10/23 22:31:30 ]
Local File Failure
[ 06/10/23 22:31:30 ]

[ DNSBL_UT1 - UT1_lingerie ] Download FAIL [ 06/10/23 22:31:30 ]
Local File Failure
[ 06/10/23 22:31:30 ]

[ DNSBL_UT1 - UT1_malware ] Download FAIL [ 06/10/23 22:31:30 ]
Local File Failure
[ 06/10/23 22:31:30 ]

[ DNSBL_UT1 - UT1_phishing ] Download FAIL [ 06/10/23 22:31:30 ]
Local File Failure
[ 06/10/23 22:31:30 ]

[ DNSBL_UT1 - UT1_sexual_education ] Download FAIL [ 06/10/23 22:31:30 ]
Local File Failure
[ 06/10/23 22:31:30 ]
DNSBL FAIL - Skipped! Use previous data, if found:
[ 06/10/23 22:31:42 ]

[ DNSBL_UT1 - UT1_bitcoin ] Download FAIL [ 06/10/23 23:00:10 ]
Local File Failure
[ 06/10/23 23:00:10 ]

[ DNSBL_UT1 - UT1_hacking ] Download FAIL [ 06/10/23 23:00:10 ]
Local File Failure
[ 06/10/23 23:00:10 ]

[ DNSBL_UT1 - UT1_lingerie ] Download FAIL [ 06/10/23 23:00:10 ]
Local File Failure
[ 06/10/23 23:00:10 ]

[ DNSBL_UT1 - UT1_malware ] Download FAIL [ 06/10/23 23:00:10 ]
Local File Failure
[ 06/10/23 23:00:10 ]

[ DNSBL_UT1 - UT1_phishing ] Download FAIL [ 06/10/23 23:00:10 ]
Local File Failure
[ 06/10/23 23:00:10 ]

[ DNSBL_UT1 - UT1_sexual_education ] Download FAIL [ 06/10/23 23:00:10 ]
Local File Failure
[ 06/10/23 23:00:10 ]
DNSBL FAIL - Skipped! Use previous data, if found:
[ 06/10/23 23:00:21 ]
DNSBL FAIL - Skipped! Use previous data, if found:
[ 06/10/23 23:14:57 ]

[ DNSBL_UT1 - UT1_bitcoin ] Download FAIL [ 06/10/23 23:14:57 ]
Local File Failure
[ 06/10/23 23:14:57 ]
DNSBL FAIL - Skipped! Use previous data, if found:
[ 06/10/23 23:15:10 ]

http://www.shallalist.de has been blocked because of the Ukraine war which what is being blocked in your log file.

Also you are going to need a lot more storage on your var partition to handle the lists.

I am getting this error after an reload.

image2169×1107 236 KB

Also I can see that due to this my queries are not resolved which I can see over here.

image694×378 47.4 KB

I tried to turn on dns resolver but it just turns off automatically.

I tried to turn off pfblocker and then turn the dns resolver on it was working fine.

Can someone please help??

How much RAM do you have on the system?

2 GB of DDR3 RAM. As it an small deployment so never needed to upgrade it.

Its possible you are running out of memory. You can try to enable the unbound python mode in pfblockerng.

image857×591 40.5 KB

Still same thing but this time dns resolver was restarted.

image713×388 47.1 KB

It is still not filtering don’t know why.

Is your PC using the LAN of your gateway for DNS? or is it using public DNS?

it is using public dns which we set in dhcp service.

image1516×456 52.3 KB

You have to use the LAN address of that network in order to utilize pfblockerng.

I did it but what I notice is in the firewall rules.

image1452×388 98.6 KB

you can see the IP blocker rule but there is no rule of DNSBL

DNSBL is tied to the DNS resolver on pfsense. It’s not a rule you can apply to an interface.

Then what should be the error ?
Tell me which logs you want me to share

The error is that you are using public DNS. You need to place the LAN address as your DNS settings in DHCP or simply remove the entries and it will, by default, use the LAN as DNS.

Still it is not filtering anything.

Did you release and renew you DHCP lease so that it’s pulling the right DNS settings?

Windows CMD:

ipconfig /release
ipconfig /renew