OPNsense Forum

English Forums => General Discussion => Topic started by: OPNsense4ever on March 26, 2020, 02:51:07 am

Title: Find entry in DNSBL?
Post by: OPNsense4ever on March 26, 2020, 02:51:07 am

Hello,I recently broke my Nest Protects and I have tracked down the issue to the DNSBLs that I have setup. I see a bunch of lookups to czfe65.front01.iad01.production.nest.com for instance being blocked. I do I find which list is causing this? Love to turn that one off if possible. I know I can whitelist, but I would prefer to find the offending list.

Thanks so much!

Title: Re: Find entry in DNSBL?
Post by: mimugmail on March 26, 2020, 05:30:36 pm

Sadly you have to try one by one as the script in the end puts all together.

Title: Re: Find entry in DNSBL?
Post by: OPNsense4ever on March 26, 2020, 09:22:06 pm

Ugh, that's not my favorite answer. :)

Just to clarify, all of the rules are loaded and then dumped into one master set at the end by a script and that is the list that is used to block against?

Where in the filesystem might I find this master list at least?

Thanks!

Title: Re: Find entry in DNSBL?
Post by: johnsmi on March 26, 2020, 11:24:52 pm

You can find the links of the individual lists - depending where you're blocking - at

https://raw.githubusercontent.com/opnsense/plugins/master/dns/unbound-plus/src/opnsense/scripts/OPNsense/Unboundplus/dnsbl.py

https://raw.githubusercontent.com/opnsense/plugins/master/dns/dnscrypt-proxy/src/opnsense/scripts/OPNsense/Dnscryptproxy/dnsbl.sh

https://raw.githubusercontent.com/opnsense/plugins/master/dns/bind/src/opnsense/scripts/OPNsense/Bind/dnsbl.sh



E.g. the resulting BIND-blocklist can be found at

Code: [Select]

/usr/local/etc/namedb/dnsbl.inc