You are not logged in.
I have a very weird issue with moblock. It blocks every connection. I have tried whitelisting my ip, I've tried whitelisting http. Nothing helps. I even disabled all block lists and still it blocks every connection.
Offline
Moblock or moblock-control?
I don't use moblock-control, just moblock, and this is what line 6 of /usr/bin/MoBlock-nfq.sh looks like on my system:
WHITE_TCP_OUT="http https ftp svn"
Offline
which lists are recommend to activate? or are you using all of them!?
Offline
Moblock or moblock-control?
I don't use moblock-control, just moblock, and this is what line 6 of /usr/bin/MoBlock-nfq.sh looks like on my system:
WHITE_TCP_OUT="http https ftp svn"
I first had both moblock and moblockcontrol, but removing moblockcontrol and adding your suggestion helped. Thanks!
But I guess I'll have to whitelist every outgoing port I use? That are quite a lot of ports :s
Last edited by Nepherte (2008-10-18 20:52:01)
Offline
one further question: how do i whitelist a certain ip? i could't login to my jabber account this mornig, so i checked the moblock log:
bash-3.2# tail -f /var/log/moblock.log
Short guarding.p2p line BitTorrent Corrupt Data Sender:76.90.114.51 -76.90.114.51, skipping it...
Ranges loaded: 316626
Merged ranges: 330
Skipped useless ranges: 4946
NFQUEUE: binding to queue '0'
Blocked OUT: Chaos Computer Club,hits: 1,DST: 217.10.10.194
Blocked OUT: Chaos Computer Club,hits: 2,DST: 217.10.10.194
Blocked OUT: Chaos Computer Club,hits: 3,DST: 217.10.10.194
Blocked OUT: Chaos Computer Club,hits: 4,DST: 217.10.10.194
Blocked OUT: Chaos Computer Club,hits: 5,DST: 217.10.10.194
which tells me, that moblock is blocking the ip of the ccc (jabber account)
Offline
arch0r -- I made a new version of moblock package that allows whitelisting of IP ranges. I'm not going to upload it to AUR just yet, but if you want to try it and let me know if it works for you here is the tarball that can be built with makepkg.
To whitelist ip ranges you need to edit the /usr/bin/MoBlock-nfq.sh file and change the WHITE_IP_IN/OUT lines to include the IPs you want to whitelist. The format for IP addresses is the same as in the block lists; you have to use a range not just a single IP address; so for example:
WHITE_IP_IN="217.10.10.194-217.10.10.194"
WHITE_IP_OUT="217.10.10.194-217.10.10.194"
Offline
yeah, that's great. thx!
Offline
Just curious: What's the syntax for adding more than one range to WHITE_IP_OUT?
Offline