Project

General

Profile

Actions

Bug #16277

open

Enabling IPv6 support in DNSBL doesn't allow pfb_dnsbl to start

Added by Wallace Panter 4 months ago. Updated 10 days ago.

Status:
Feedback
Priority:
Normal
Assignee:
-
Category:
pfBlockerNG
Target version:
-
Start date:
Due date:
% Done:

100%

Estimated time:
Plus Target Version:
Affected Version:
Affected Plus Version:
24.11
Affected Architecture:
All

Description

Following up from https://www.reddit.com/r/pfBlockerNG/comments/1jb5rtc/ipv6_woes_wrong_vip/

I created a PR to fix the issue: https://github.com/pfsense/FreeBSD-ports/pull/1416

The run down of the issue is including the server.use-ipv6 = "enable" block in the lighttpd config tells it to listen on EVERY ipv6 interface, not just the selected ones. Removing this allows the logic expected to still work (i.e. localhost only, selected interfaces, combos of the above)


Files

clipboard-202508231612-n3avm.png (139 KB) clipboard-202508231612-n3avm.png Danilo Zrenjanin, 08/23/2025 02:12 PM
clipboard-202508231613-ckfnc.png (82.5 KB) clipboard-202508231613-ckfnc.png Danilo Zrenjanin, 08/23/2025 02:13 PM
clipboard-202508231614-r6whu.png (56.2 KB) clipboard-202508231614-r6whu.png Danilo Zrenjanin, 08/23/2025 02:14 PM
Actions #1

Updated by Danilo Zrenjanin about 1 month ago

Tested against:

25.07.1-RELEASE (amd64)
built on Fri Aug 15 18:42:00 UTC 2025
FreeBSD 15.0-CURRENT
pfBlockerNG-devel 3.2.7

I couldn't reproduce the issue.

Actions #2

Updated by Danilo Zrenjanin about 1 month ago

[25.07.1-RELEASE][admin@pfSense.home.arpa]/root: sockstat -6 -l | grep :443
root     lighttpd_p 21882 6   tcp6   ::10.10.10.1:443      *:*
www      haproxy    55509 6   tcp6   fc00::1:443           *:*

Actions #3

Updated by Marcos M 10 days ago

  • Status changed from Pull Request Review to Feedback

Added in pfBlockerNG-devel 3.2.10.

Actions #4

Updated by Marcos M 10 days ago

  • % Done changed from 0 to 100
Actions

Also available in: Atom PDF