aboutsummaryrefslogtreecommitdiffstats
path: root/config/pfblockerng
diff options
context:
space:
mode:
Diffstat (limited to 'config/pfblockerng')
-rw-r--r--config/pfblockerng/pfblockerng.inc11
1 files changed, 9 insertions, 2 deletions
diff --git a/config/pfblockerng/pfblockerng.inc b/config/pfblockerng/pfblockerng.inc
index f1242ca3..9f550249 100644
--- a/config/pfblockerng/pfblockerng.inc
+++ b/config/pfblockerng/pfblockerng.inc
@@ -1315,8 +1315,8 @@ function pfb_download_failure($alias, $header, $pfbfolder, $vtype, $list_url) {
$log = " Local File Failure\n";
pfb_logger("{$log}", 2);
} else {
- // Determine if Firewall/IDS is blocking download.
- $ip = @gethostbyname($host);
+ // Determine if Firewall/IDS/DNSBL is blocking download.
+ $ip = @gethostbyname($host['host']);
if (!empty($ip)) {
// Query Firewall aliastables
@@ -1327,6 +1327,13 @@ function pfb_download_failure($alias, $header, $pfbfolder, $vtype, $list_url) {
$pfbfound = TRUE;
}
+ // Determine if Host is listed in DNSBL
+ if ($ip == $pfb['dnsbl_vip']) {
+ $log = " [ {$host['host']} ] Domain listed in DNSBL\n";
+ pfb_logger("{$log}", 2);
+ $pfbfound = TRUE;
+ }
+
// Query Snort/Suricata snort2c IP block table
$result = exec("{$pfb['pfctl']} -t snort2c -T show | {$pfb['grep']} {$ip} 2>&1");
if (!empty($result)) {
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-02 17:59:48 +0000