GeoIP 20.7 solution

Started by Julien, August 17, 2020, 03:56:15 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
August 17, 2020, 03:56:15 PM
Hi Guys,

If your GEOIP seems not to works after the last uptate, the issue is easy and simple
your firewall Firewall Maximum Table Entries is Limited to 100k.
So Go to your firewall>>>Settings>>>Advanced and change the value of Firewall Maximum Table Entries to 200k and save.
i have mine at 400k as ive got a powerfull hardware.

after i've done that the GEOIP start working and loading IPS.
DEC4240 – OPNsense Owner
August 17, 2020, 05:49:21 PM #1
According to my OPNsense, actually the default value is set to 1M and the issue still persists...
August 17, 2020, 09:50:07 PM #2 Last Edit: August 18, 2020, 04:29:40 PM by FullyBorked
Edit: I can't read....  This worked for me.
August 18, 2020, 12:54:30 AM #3 Last Edit: August 18, 2020, 01:01:15 AM by Julien
Make sure to change the number twice to the one you have already there and reload the GEOIP.
like remove one country and save and re-add it.
i've done it today in 4 boxes which had the issue before and its appear to fix it.
DEC4240 – OPNsense Owner
August 19, 2020, 05:45:59 PM #4 Last Edit: August 19, 2020, 06:53:07 PM by Julien
Today I have rebooted one of the boxes and noticed it's didn't load the geoip.
After changing the size from 200k to 400k op has been loaded
It's a bug but this solutions is the only that works for me till now.

@hydschu read carefully what I said
DEC4240 – OPNsense Owner
August 25, 2020, 01:44:04 PM #5
After Update to 20.7 GeoIP doesn't work anymore for an Alias with GeoIp, IPv4.
The Problem was, that the pfTable (Firewall: Diagnostics: pfTables) for the Alias was empty!
IPv6 worked.
The cause were empty files *IPv4 in /usr/local/share/GeoIP/alias/.
I renamed /usr/local/share/GeoIP , and applied the settings in  Firewall: Aliases: GeoIP setting again.
The folder /usr/local/share/GeoIP was new created, now with the correct IPv4 files.
And the pfTable is filled for the Alias and GeoIP is working again.




August 25, 2020, 09:10:42 PM #6
sorry. wrong forum
August 30, 2020, 04:11:04 PM #7
There is definitely something wrong with GeoIP processing in V.20.7.1. After Upgrading to this version GeoIP falsely blocked legitimate IPs. Setting "Firewall Maximum Table Entries" to 200000 resolved this issue instantly. When I leave this box empty, the help says "On your system the default size is: 200000" But this can't be, otherwise setting this value explicitly to the same value should not change anything.

This is repeatable. After booting with this field kept empty I get falsely blocket IPs, setting "Firewall Maximum Table Entries" to 200000 resolves this issue again.
Print
Go Up Pages1
User actions