Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1041
  • Last Modified:

PfSense and Hardware Firewall blocking Dropbox.com using pfBlockerNG.

I have upgraded my pfsense firewall to 2.3.2, since then I cant get to dropbox.com. I'm not savey with pfsense so I cant figure out  what is wrong.  I have added pfblockerNG so I figured that must be blocking it.  I out in a exception rule for the domain name www.dropbox.com and this does not fix the problem.  Please be patient with me because I am fairly new to this Hardware firewall stuff.  By the way I did disable Windows firewall and Virus protection on my PC and still no luck.  Any help will be very appreciated so thank you in advance.
0
Mark Hynes
Asked:
Mark Hynes
  • 6
  • 4
2 Solutions
 
ArneLoviusCommented:
Are you able to reach dropbox.com if you disable pfblockerNG ?
1
 
Mark HynesSystems Administrator & Hardware ManagerAuthor Commented:
I just tested it, and yes I can get to dropbox.com if I disable pfblockerNG.

Mark H
0
 
ArneLoviusCommented:
Which would indicate that your initial diagnosis was correct, and the problem is indeed with pfblockerNG.

What is your intended use for pfblockerNG ?
0
The Lifecycle Approach to Managing Security Policy

Managing application connectivity and security policies can be achieved more effectively when following a framework that automates repeatable processes and ensures that the right activities are performed in the right order.

 
Mark HynesSystems Administrator & Hardware ManagerAuthor Commented:
The best way I can explain it is: to filter out known BAD Addresses.  I would also like to stop the internet from scanning my ports and stop brute force password attacks, however I haven't been able to figure that out either.  

When, I disabled pfBlockerNG, (like you told me to) I was able to get to dropbox.com.  I re-enabled pfsenseNG, and reloaded filters,  I can still get to dropbox.com site.  Not sure whats going on but disable and enabled worked.  What do you make of that ?

Mark H
0
 
Mark HynesSystems Administrator & Hardware ManagerAuthor Commented:
Just tried dropbox again it is not working, its being blocked again.

Mark H
0
 
ArneLoviusCommented:
pfblockedNG uses external lists of addresses to create deny rules based on address, by itself it will not stop port scans or brute force attacks.

from what you have described, it would appear that some part of your configuration of pfblockedNG is adding the address(es) used by dropbox.com to a deny list.

I would suggest that you removed and re-added pfblockerNG, and made one configuration change at a time, leaving it for the same time that it took to block previously, by this process you should then find the configuration change that is causing dropbox.com to get blocked.
0
 
Mark HynesSystems Administrator & Hardware ManagerAuthor Commented:
OK, I understand what you want me to do, so I will begin now and try this.  However, I think you should know that I have looked at the deny logs. I can't  see where it dropbox is being blocked because I think the IP address change every hour or so. Do you think I'm correct in saying this ?

Mark H
0
 
ArneLoviusCommented:
er, no you're not correct.

dropbox.com isn't a single active address that changes, it's multiple address with global load balancing.
0
 
Mark HynesSystems Administrator & Hardware ManagerAuthor Commented:
Thanks to you, I figured it out.  It is the HiJacker IP database that is blocking it.  Since this is a table that is down loaded from iBlocker, Im not sure how to remove it from the table. 162.125.0.0/16.

Any thoughts?
0
 
Mark HynesSystems Administrator & Hardware ManagerAuthor Commented:
Thanks very much for your help.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Building an Effective Phishing Protection Program

Join Director of Product Management Todd OBoyle on April 26th as he covers the key elements of a phishing protection program. Whether you’re an old hat at phishing education or considering starting a program -- we'll discuss critical components that should be in any program.

  • 6
  • 4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now