Bug #13745
open
pfBlockerNG doesn't resolve aliases in supression alias list
0%
Description
When adding another alias to the pfBlockerNGSuppresion alias it is not resolved. I would expect that at least all other ip-only-aliases are resolved.
I guess what's needed here is to add the following logic to https://github.com/pfsense/FreeBSD-ports/blob/f1001288678186b2636f681ba9209bc623def16e/net/pfSense-pkg-pfBlockerNG/files/usr/local/pkg/pfblockerng/pfblockerng.inc#L616
- Iterate through the entries and check each one to verify if it's a valid IPv4 or IPv6 address
- If there is an entry that isn't a valid IPv4 or IPv6 address replace it
- It should attempt to resolve the alias and replace it while passing a list of already resolved aliases
- If an entry/alias can not be resolved it will be replaced with an empty string (so invalid/unusable entries are filtered)
- If an entry/alias can be resolved it will be replaced with a list of IP addresses, added to the list of resolved aliases and the same function is called again on the just created list
- Aliases that have been previously resolved will be replaced with an empty string
- This way it is ensured that every alias is only resolved once and even aliases within aliases are resolved
No data to display