Bug #4910
closed
Alias URL table with FQDN entries which don't update / higher frequency needed
0%
Description
According to [[https://doc.pfsense.org/index.php/Aliases#Aliases_and_Hostnames]] hostnames are updated as often as configured in System > Advanced > Firewall / NAT. Unfortunately this is true only for aliases entered directly as hosts.
When using a URL table containing FQDNs, these are not updated as stated in the documentation. The URL table is downloaded properly, and hostnames are all resolved to IPs, but only once when the file is downloaded into the table.
The correct behaviour should be to resolve the names in the list just like single hosts.
Smaller update frequencies per table would be desirable, like as low as 5 minutes (Suggested values: 5, 15, 30 minutes, 1, 2, 4, 8, 12 hours) in addition to existing ones.
I posted a trick to forcefully update the table and resolve the names more often:
https://forum.pfsense.org/index.php?topic=97350.msg542200#msg542200
Updated by Jim Pingle about 10 years ago
- Status changed from New to Rejected
Two completely different animals there.
Host and network aliases are parsed in pfSense and passed into filterdns for periodic resolution. Hosts obtained from a URL table are resolved by pf at load time, they are not seen nor handled by pfSense or filterdns.
Note on the documentation you linked nowhere does it state that FQDN entries in URL tables are supported or will be resolved periodically. It specifically mentions Host and Network type aliases, and the URL table section explicitly mentions IP addresses and CIDR blocks.
What you want may be more easily accomplished via pfblockerng.