Date: Sat, 14 Nov 2020 11:39:04 -0600 From: "J. Hellenthal" <jhellenthal@dataix.net> To: freebsd-security@freebsd.org Subject: Re: pf/pfctl loading CIDR tables & IPv6 Message-ID: <F0985A00-1528-48E3-8DC6-B9D2C60C4966@dataix.net> In-Reply-To: <A9F52180-F642-430D-8D53-C92CBE6C6049@dataix.net> References: <A9F52180-F642-430D-8D53-C92CBE6C6049@dataix.net>
next in thread | previous in thread | raw e-mail | index | archive | help
I should also note here that after modifying the file and removing the = offending information there was also another error where =E2=80=9C/=E2=80=9C= character was being tested and failed for IPv6 but I do not have that = error available ATM. > On Nov 14, 2020, at 10:58, J. Hellenthal <jhellenthal@dataix.net> = wrote: >=20 > Hello List! >=20 > Hoping someone might be able to shed some light on this and get to a = conclusion faster than I have time for right now. >=20 >=20 > But while loading a CIDR formatted list with =E2=80=98#=E2=80=99 = comments from [1] I am getting the following error for multiple entries = >10 and results in the only the partial list being loaded into the = table=E2=80=A6 The settings to download the file[2] are from the Russian = Federation, IPv6 and in CIDR format. >=20 > =E2=80=9C (pfctl -v -t blacklist -T add -f [=E2=80=A6] > No ALTQ support in kernel > ALTQ related functions disabled > no IP address found for 2001:BB6:6A10:4200:58D7:5934:7 > pfctl: cannot load = Downloads/cidr-3ffe1c0826f41fbdced334355b66202c.txt: Undefined error: 0 > " >=20 > This happens both on FreeBSD 12-STABLE r367639 and the latest macOS = Big Sur >=20 > 1. https://www.ip2location.com/free/visitor-blocker > 2. = https://www.dropbox.com/s/8efctv56j6ocrbv/Screen%20Shot%202020-11-14%20at%= 2010.52.07.png?dl=3D0 >=20 >=20 > Appreciate any feedback on this and willing to test any patches to = resolve this situation. >=20 >=20 > Thank you >=20 > --=20 >=20 > J. Hellenthal >=20 > The fact that there's a highway to Hell but only a stairway to Heaven = says a lot about anticipated traffic volume. >=20 >=20 >=20 >=20 >=20 >=20 --=20 J. Hellenthal The fact that there's a highway to Hell but only a stairway to Heaven = says a lot about anticipated traffic volume.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?F0985A00-1528-48E3-8DC6-B9D2C60C4966>