Bug #7543
closed
pfBlockerNG doesn't appear to pull IP block lists that are marked as "OFF" if previously they were enabled
0%
Updated by Andrew - almost 7 years ago
If you have various IPv4 lists and set one of them to "ON", but then subsequently set it to "OFF", it appears that pfBlockerNG does not pull the IP addresses that formerly were in the ON list when switching to OFF.
e.g. in the example below I have an inbound permit list that enables certain countries' IP ranges. I switched one country off, an one country on and then did a "force update". The entry below suggests the new country was added, but that the previous country was not deleted:
Updating: pfB_Inbound_permit
4583 addresses added.One can see that in the ordinary course, if IP addresses have been deleted, pfBlockerNG will say so:
Updating: pfB_iBlockList
64 addresses added.11 addresses deleted.Please can you confirm whether pfBlockerNG is properly pulling lists of IPs that are changed from "ON" to "OFF".
Thank you.
Updated by Kill Bill almost 7 years ago
Andrew - wrote:
Please can you confirm whether pfBlockerNG is properly pulling lists of IPs that are changed from "ON" to "OFF".
Thank you.
Please use https://forum.pfsense.org for support. This is a bug tracker.
Updated by
Updated by Andrew - almost 7 years ago
It's a bug. The update message should reflect the deletion of the IP ranges associated with the list set to "OFF". It doesn't.