Link to home
Start Free TrialLog in
Avatar of Mark Hynes
Mark HynesFlag for United States of America

asked on

PfSense and Hardware Firewall blocking Dropbox.com using pfBlockerNG.

I have upgraded my pfsense firewall to 2.3.2, since then I cant get to dropbox.com. I'm not savey with pfsense so I cant figure out  what is wrong.  I have added pfblockerNG so I figured that must be blocking it.  I out in a exception rule for the domain name www.dropbox.com and this does not fix the problem.  Please be patient with me because I am fairly new to this Hardware firewall stuff.  By the way I did disable Windows firewall and Virus protection on my PC and still no luck.  Any help will be very appreciated so thank you in advance.
Avatar of ArneLovius
ArneLovius
Flag of United Kingdom of Great Britain and Northern Ireland image

Are you able to reach dropbox.com if you disable pfblockerNG ?
Avatar of Mark Hynes

ASKER

I just tested it, and yes I can get to dropbox.com if I disable pfblockerNG.

Mark H
Which would indicate that your initial diagnosis was correct, and the problem is indeed with pfblockerNG.

What is your intended use for pfblockerNG ?
The best way I can explain it is: to filter out known BAD Addresses.  I would also like to stop the internet from scanning my ports and stop brute force password attacks, however I haven't been able to figure that out either.  

When, I disabled pfBlockerNG, (like you told me to) I was able to get to dropbox.com.  I re-enabled pfsenseNG, and reloaded filters,  I can still get to dropbox.com site.  Not sure whats going on but disable and enabled worked.  What do you make of that ?

Mark H
Just tried dropbox again it is not working, its being blocked again.

Mark H
ASKER CERTIFIED SOLUTION
Avatar of ArneLovius
ArneLovius
Flag of United Kingdom of Great Britain and Northern Ireland image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
OK, I understand what you want me to do, so I will begin now and try this.  However, I think you should know that I have looked at the deny logs. I can't  see where it dropbox is being blocked because I think the IP address change every hour or so. Do you think I'm correct in saying this ?

Mark H
er, no you're not correct.

dropbox.com isn't a single active address that changes, it's multiple address with global load balancing.
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Thanks very much for your help.