Re: [pfSense] bogon networks
Thanks for the info. I've been working working on this all night on and off. My questions to you guys is, does files.pfsense.org and/or updates.pfsense.org block bogon networks and if so, can I ask the update schedule? I ask because the bogon list on a pfSense box connected to our 192.40.140.0/23 block currently does contain our block and we can't connect from source 192.40.140.2 to download updates. Drew - Original Message - From: Moshe Katz mo...@ymkatz.net To: pfSense support and discussion list@lists.pfsense.org Sent: Sunday, September 28, 2014 12:04:25 PM Subject: Re: [pfSense] bogon networks The pfSense bogon list is at https://files.pfsense.org/lists/fullbogons-ipv4.txt and the current version there also doesn't have your block. Make sure that your pfSense has the newest list. (This should usually be done automatically, but you should be able to do it from the console/SSH by running /etc/rc.update_bogons). Moshe Sent from mobile device; sorry for top-posting. On Sep 28, 2014 10:26 AM, Chris Bagnall pfse...@lists.minotaur.cc wrote: On 28 Sep 2014, at 12:19, Andrew Mitchell andrew.k.mitch...@att.net wrote: My apologies. 192.40.140.0/23 I'm not sure what pfSense uses as its Bogons source, but my reference has usually been: http://www.team-cymru.org/Services/Bogons/http.html Your IP block isn't in there, from what I can see... Kind regards, Chris -- This email is made from 100% recycled electrons ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] bogon networks
Have you tried pinging the IP from another machine not being routed through your subnet? On 9/29/2014 6:37 AM, Andrew Mitchell wrote: Thanks for the info. I've been working working on this all night on and off. My questions to you guys is, does files.pfsense.org and/or updates.pfsense.org block bogon networks and if so, can I ask the update schedule? I ask because the bogon list on a pfSense box connected to our 192.40.140.0/23 block currently does contain our block and we can't connect from source 192.40.140.2 to download updates. Drew *From: *Moshe Katz mo...@ymkatz.net *To: *pfSense support and discussion list@lists.pfsense.org *Sent: *Sunday, September 28, 2014 12:04:25 PM *Subject: *Re: [pfSense] bogon networks The pfSense bogon list is at https://files.pfsense.org/lists/fullbogons-ipv4.txt and the current version there also doesn't have your block. Make sure that your pfSense has the newest list. (This should usually be done automatically, but you should be able to do it from the console/SSH by running /etc/rc.update_bogons). Moshe Sent from mobile device; sorry for top-posting. On Sep 28, 2014 10:26 AM, Chris Bagnall pfse...@lists.minotaur.cc mailto:pfse...@lists.minotaur.cc wrote: On 28 Sep 2014, at 12:19, Andrew Mitchell andrew.k.mitch...@att.net mailto:andrew.k.mitch...@att.net wrote: My apologies. 192.40.140.0/23 http://192.40.140.0/23 I'm not sure what pfSense uses as its Bogons source, but my reference has usually been: http://www.team-cymru.org/Services/Bogons/http.html Your IP block isn't in there, from what I can see... Kind regards, Chris -- This email is made from 100% recycled electrons ___ List mailing list List@lists.pfsense.org mailto:List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] bogon networks
Yeah. Connects to both files.pfsense.org and updates.pfsense.org servers fine. Drew - Original Message - From: Ryan Coleman ryan.cole...@cwis.biz To: pfSense Support and Discussion Mailing List list@lists.pfsense.org Sent: Monday, September 29, 2014 9:46:13 AM Subject: Re: [pfSense] bogon networks Have you tried pinging the IP from another machine not being routed through your subnet? On 9/29/2014 6:37 AM, Andrew Mitchell wrote: Thanks for the info. I've been working working on this all night on and off. My questions to you guys is, does files.pfsense.org and/or updates.pfsense.org block bogon networks and if so, can I ask the update schedule? I ask because the bogon list on a pfSense box connected to our 192.40.140.0/23 block currently does contain our block and we can't connect from source 192.40.140.2 to download updates. Drew - Original Message - From: Moshe Katz mo...@ymkatz.net To: pfSense support and discussion list@lists.pfsense.org Sent: Sunday, September 28, 2014 12:04:25 PM Subject: Re: [pfSense] bogon networks The pfSense bogon list is at https://files.pfsense.org/lists/fullbogons-ipv4.txt and the current version there also doesn't have your block. Make sure that your pfSense has the newest list. (This should usually be done automatically, but you should be able to do it from the console/SSH by running /etc/rc.update_bogons). Moshe Sent from mobile device; sorry for top-posting. On Sep 28, 2014 10:26 AM, Chris Bagnall pfse...@lists.minotaur.cc wrote: blockquote On 28 Sep 2014, at 12:19, Andrew Mitchell andrew.k.mitch...@att.net wrote: My apologies. 192.40.140.0/23 I'm not sure what pfSense uses as its Bogons source, but my reference has usually been: http://www.team-cymru.org/Services/Bogons/http.html Your IP block isn't in there, from what I can see... Kind regards, Chris -- This email is made from 100% recycled electrons ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list /blockquote ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] bogon networks
Then I suspect that the issue is not in your network but a problem on the software side. On 9/29/2014 8:53 AM, Andrew Mitchell wrote: Yeah. Connects to both files.pfsense.org and updates.pfsense.org servers fine. Drew *From: *Ryan Coleman ryan.cole...@cwis.biz *To: *pfSense Support and Discussion Mailing List list@lists.pfsense.org *Sent: *Monday, September 29, 2014 9:46:13 AM *Subject: *Re: [pfSense] bogon networks Have you tried pinging the IP from another machine not being routed through your subnet? On 9/29/2014 6:37 AM, Andrew Mitchell wrote: Thanks for the info. I've been working working on this all night on and off. My questions to you guys is, does files.pfsense.org and/or updates.pfsense.org block bogon networks and if so, can I ask the update schedule? I ask because the bogon list on a pfSense box connected to our 192.40.140.0/23 block currently does contain our block and we can't connect from source 192.40.140.2 to download updates. Drew *From: *Moshe Katz mo...@ymkatz.net *To: *pfSense support and discussion list@lists.pfsense.org *Sent: *Sunday, September 28, 2014 12:04:25 PM *Subject: *Re: [pfSense] bogon networks The pfSense bogon list is at https://files.pfsense.org/lists/fullbogons-ipv4.txt and the current version there also doesn't have your block. Make sure that your pfSense has the newest list. (This should usually be done automatically, but you should be able to do it from the console/SSH by running /etc/rc.update_bogons). Moshe Sent from mobile device; sorry for top-posting. On Sep 28, 2014 10:26 AM, Chris Bagnall pfse...@lists.minotaur.cc mailto:pfse...@lists.minotaur.cc wrote: On 28 Sep 2014, at 12:19, Andrew Mitchell andrew.k.mitch...@att.net mailto:andrew.k.mitch...@att.net wrote: My apologies. 192.40.140.0/23 http://192.40.140.0/23 I'm not sure what pfSense uses as its Bogons source, but my reference has usually been: http://www.team-cymru.org/Services/Bogons/http.html Your IP block isn't in there, from what I can see... Kind regards, Chris -- This email is made from 100% recycled electrons ___ List mailing list List@lists.pfsense.org mailto:List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] bogon networks
I've forced an update on the firewalls for the bogon, list, that protect files/updates.pfsense.org. This should resolve your issue. On 9/29/2014 6:37 AM, Andrew Mitchell wrote: Thanks for the info. I've been working working on this all night on and off. My questions to you guys is, does files.pfsense.org and/or updates.pfsense.org block bogon networks and if so, can I ask the update schedule? I ask because the bogon list on a pfSense box connected to our 192.40.140.0/23 block currently does contain our block and we can't connect from source 192.40.140.2 to download updates. Drew *From: *Moshe Katz mo...@ymkatz.net *To: *pfSense support and discussion list@lists.pfsense.org *Sent: *Sunday, September 28, 2014 12:04:25 PM *Subject: *Re: [pfSense] bogon networks The pfSense bogon list is at https://files.pfsense.org/lists/fullbogons-ipv4.txt and the current version there also doesn't have your block. Make sure that your pfSense has the newest list. (This should usually be done automatically, but you should be able to do it from the console/SSH by running /etc/rc.update_bogons). Moshe Sent from mobile device; sorry for top-posting. On Sep 28, 2014 10:26 AM, Chris Bagnall pfse...@lists.minotaur.cc mailto:pfse...@lists.minotaur.cc wrote: On 28 Sep 2014, at 12:19, Andrew Mitchell andrew.k.mitch...@att.net mailto:andrew.k.mitch...@att.net wrote: My apologies. 192.40.140.0/23 http://192.40.140.0/23 I'm not sure what pfSense uses as its Bogons source, but my reference has usually been: http://www.team-cymru.org/Services/Bogons/http.html Your IP block isn't in there, from what I can see... Kind regards, Chris -- This email is made from 100% recycled electrons ___ List mailing list List@lists.pfsense.org mailto:List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] bogon networks
Indeed it did. Thanks, Drew - Original Message - From: Jeremy Porter jpor...@electricsheepfencing.com To: list@lists.pfsense.org Sent: Monday, September 29, 2014 1:55:42 PM Subject: Re: [pfSense] bogon networks I've forced an update on the firewalls for the bogon, list, that protect files/updates.pfsense.org. This should resolve your issue. On 9/29/2014 6:37 AM, Andrew Mitchell wrote: Thanks for the info. I've been working working on this all night on and off. My questions to you guys is, does files.pfsense.org and/or updates.pfsense.org block bogon networks and if so, can I ask the update schedule? I ask because the bogon list on a pfSense box connected to our 192.40.140.0/23 block currently does contain our block and we can't connect from source 192.40.140.2 to download updates. Drew - Original Message - From: Moshe Katz mo...@ymkatz.net To: pfSense support and discussion list@lists.pfsense.org Sent: Sunday, September 28, 2014 12:04:25 PM Subject: Re: [pfSense] bogon networks The pfSense bogon list is at https://files.pfsense.org/lists/fullbogons-ipv4.txt and the current version there also doesn't have your block. Make sure that your pfSense has the newest list. (This should usually be done automatically, but you should be able to do it from the console/SSH by running /etc/rc.update_bogons). Moshe Sent from mobile device; sorry for top-posting. On Sep 28, 2014 10:26 AM, Chris Bagnall pfse...@lists.minotaur.cc wrote: blockquote On 28 Sep 2014, at 12:19, Andrew Mitchell andrew.k.mitch...@att.net wrote: My apologies. 192.40.140.0/23 I'm not sure what pfSense uses as its Bogons source, but my reference has usually been: http://www.team-cymru.org/Services/Bogons/http.html Your IP block isn't in there, from what I can see... Kind regards, Chris -- This email is made from 100% recycled electrons ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list /blockquote ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] bogon networks
Perhaps if you specified your block? On Sep 28, 2014, at 5:59 AM, Andrew Mitchell andrew.k.mitch...@att.net wrote: My company has just recently been assigned it's own block from ARIN. We have a handful of pfSense boxes we need to connect to from that block. I have noticed we can't when Block bogon networks is enabled on the WAN interfaces. Interestingly enough I also noticed that our block can't connect to updates.pfsense.org as well. Any thoughts, ideas, advise or thoughts would be greatly appreciated. Thanks, Drew ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] bogon networks
My apologies. 192.40.140.0/23 Drew - Original Message - From: Jim Thompson j...@netgate.com To: pfSense Support and Discussion Mailing List list@lists.pfsense.org Sent: Sunday, September 28, 2014 7:01:05 AM Subject: Re: [pfSense] bogon networks Perhaps if you specified your block? On Sep 28, 2014, at 5:59 AM, Andrew Mitchell andrew.k.mitch...@att.net wrote: My company has just recently been assigned it's own block from ARIN. We have a handful of pfSense boxes we need to connect to from that block. I have noticed we can't when Block bogon networks is enabled on the WAN interfaces. Interestingly enough I also noticed that our block can't connect to updates.pfsense.org as well. Any thoughts, ideas, advise or thoughts would be greatly appreciated. Thanks, Drew ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] bogon networks
I had a coworker that uses an ISP at home that obtained a new block that was listed in the bogon list. I sent an email to the bogon list curators and informed them that a now legit IP block was being blocked. It took maybe 24 hours, but the block was removed and bogons could be re-enabled on pf. On Sep 28, 2014, at 6:59 AM, Andrew Mitchell andrew.k.mitch...@att.net wrote: My company has just recently been assigned it's own block from ARIN. We have a handful of pfSense boxes we need to connect to from that block. I have noticed we can't when Block bogon networks is enabled on the WAN interfaces. Interestingly enough I also noticed that our block can't connect to updates.pfsense.org as well. Any thoughts, ideas, advise or thoughts would be greatly appreciated. Thanks, Drew ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] bogon networks
On 28 Sep 2014, at 12:19, Andrew Mitchell andrew.k.mitch...@att.net wrote: My apologies. 192.40.140.0/23 I'm not sure what pfSense uses as its Bogons source, but my reference has usually been: http://www.team-cymru.org/Services/Bogons/http.html Your IP block isn't in there, from what I can see... Kind regards, Chris -- This email is made from 100% recycled electrons ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] bogon networks
The pfSense bogon list is at https://files.pfsense.org/lists/fullbogons-ipv4.txt and the current version there also doesn't have your block. Make sure that your pfSense has the newest list. (This should usually be done automatically, but you should be able to do it from the console/SSH by running /etc/rc.update_bogons). Moshe Sent from mobile device; sorry for top-posting. On Sep 28, 2014 10:26 AM, Chris Bagnall pfse...@lists.minotaur.cc wrote: On 28 Sep 2014, at 12:19, Andrew Mitchell andrew.k.mitch...@att.net wrote: My apologies. 192.40.140.0/23 I'm not sure what pfSense uses as its Bogons source, but my reference has usually been: http://www.team-cymru.org/Services/Bogons/http.html Your IP block isn't in there, from what I can see... Kind regards, Chris -- This email is made from 100% recycled electrons ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] bogon networks update failing
On 2013-02-12 20:48, Chris Buechler wrote: On Tue, Feb 12, 2013 at 12:46 PM, Ugo Bellavance u...@lubik.ca wrote: Hi, I get this error in the logs: root: Could not download http://files.pfsense.org/mirrors/bogon-bn-nonagg.txt.md5 (md5 mismatch) That's what happens when something upstream is breaking your Internet connectivity and returning bunk data, for instance maybe a captive portal, or a proxy server returning something other than the actual file, amongst other possibilities. Go to a command prompt on the firewall and run: fetch http://files.pfsense.org/mirrors/bogon-bn-nonagg.txt.md5 and cat the resulting file to see what you're getting, should help track down what's happening. [2.0.1-RELEASE][user@]/home/user(4): cat bogon-bn-nonagg.txt.md5 MD5 (/home/cmb/bogons/bogon-bn-nonagg.txt) = 9fb7d3a1645fbbe899e4c0938b6858f1 I fetched http://files.pfsense.org/mirrors/bogon-bn-nonagg.txt, md5'd it and it gives this: MD5 (bogon-bn-nonagg.txt) = 9fb7d3a1645fbbe899e4c0938b6858f1 I don't really see what could have been wrong. ___ List mailing list List@lists.pfsense.org http://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] bogon networks update failing
On 2013-02-12 20:57, Michael Schuh wrote: DNS is working correct? Yes an MTR reports no packet loss or bogus routing or flaky routes? Hmmm, MTR? Your provider does not block or control traffic through transparent proxies? I really don't think so. Wen I go to http://www.whatismyip.com/, it returns the IP address associated with my wan interface, and it says No proxy detected. Thanks, Ugo ___ List mailing list List@lists.pfsense.org http://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] bogon networks update failing
2013/2/13 Chris Buechler c...@pfsense.org On Tue, Feb 12, 2013 at 12:46 PM, Ugo Bellavance u...@lubik.ca wrote: Hi, I get this error in the logs: root: Could not download http://files.pfsense.org/mirrors/bogon-bn-nonagg.txt.md5 (md5 mismatch) That's what happens when something upstream is breaking your Internet connectivity and returning bunk data, for instance maybe a captive portal, or a proxy server returning something other than the actual file, amongst other possibilities. Go to a command prompt on the firewall and run: fetch http://files.pfsense.org/mirrors/bogon-bn-nonagg.txt.md5 and cat the resulting file to see what you're getting, should help track down what's happening. ___ List mailing list List@lists.pfsense.org http://lists.pfsense.org/mailman/listinfo/list DNS is working correct? an MTR reports no packet loss or bogus routing or flaky routes? Your provider does not block or control traffic through transparent proxies? -- = = = http://michael-schuh.net/ = = = Projektmanagement - IT-Consulting - Professional Services IT Michael Schuh Postfach 10 21 52 66021 Saarbrücken phone: 0681/8319664 @: m i c h a e l . s c h u h @ g m a i l . c o m = = = Ust-ID: DE251072318 = = = ___ List mailing list List@lists.pfsense.org http://lists.pfsense.org/mailman/listinfo/list