Date: Mon, 09 Feb 2026 16:55:06 +0100 From: =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= <des@FreeBSD.org> To: Doug Hardie <bc979@lafn.org> Cc: questions@freebsd.org Subject: Re: blacklistd vs blocklistd Message-ID: <86v7g56het.fsf@ltc.des.dev> In-Reply-To: <A06CF97C-2AE6-4CB2-A044-BB522B35C7A0@lafn.org> (Doug Hardie's message of "Sun, 8 Feb 2026 17:21:55 -0800") References: <791ACFD5-4DDC-4454-A88B-077801822560@lafn.org> <86zf5i6btk.fsf@ltc.des.dev> <A06CF97C-2AE6-4CB2-A044-BB522B35C7A0@lafn.org>
index | next in thread | previous in thread | raw e-mail
Doug Hardie <bc979@lafn.org> writes:
> I switched back to blocklistd, but the previous blacklistd entries
> show with blocklistctl, but pfctl only finds 5 entries whereas before
> there were over 800. Also, I previously was seeing around 80 new
> blocking entries added every hour. Now I am seeing 2 in the pf
> tables.
Switching from one to the other changes the name of the pf anchor. Did
you update your pf.conf accordingly, and are you sure you're looking at
the correct anchor and table? For instance, if running blocklistd, you
would use the following command to see blocked IPs:
sudo pfctl -a blocklistd/22 -t port22 -Ts
DES
--
Dag-Erling Smørgrav - des@FreeBSD.org
home |
help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?86v7g56het.fsf>