Updateproblems banip feeds - fixed

neurotransmitter · October 10, 2024, 1:44pm

Team,

I think, it's a small problem...but for me...

When I try to update the banip feeds I get this error messages:

Thu Oct 10 15:38:52 2024 user.info banIP-1.0.0-7[26735]: download for feed 'dropv4' failed (rc: 4/log: Downloading 'https://www.spamhaus.org/drop/drop.txt' Failed to send request: Operation not permitted)
Thu Oct 10 15:38:57 2024 user.info banIP-1.0.0-7[26735]: download for feed 'greensnowv4' failed (rc: 4/log: Downloading 'https://blocklist.greensnow.co/greensnow.txt' Failed to send request: Operation not permitted)
Thu Oct 10 15:39:02 2024 user.info banIP-1.0.0-7[26735]: download for feed 'ipblackholev4' failed (rc: 4/log: Downloading 'https://blackhole.s-e-r-v-e-r.pw/blackhole-today' Failed to send request: Operation not permitted)
Thu Oct 10 15:39:02 2024 user.info banIP-1.0.0-7[26735]: download for feed 'iblockspyv4' failed (rc: 4/log: Downloading 'https://list.iblocklist.com/?list=llvtlsjyoyiczbkjsxpf&fileformat=cidr&archiveformat=gz' Failed to send request: Operation not permitted)

I can download the content of the feedlinks via browser...

Any idea?

thanks neuro

frollic · October 10, 2024, 1:50pm

check you network settings, DNS, default gw, etc ...

neurotransmitter · October 10, 2024, 2:02pm

Thanks frollic for your quick response.
Ok, what I miss to announce..only some feeds are blocked...not all because I downloaded several more feeds than you can see above.
On the other hand, I can download on the same environments(NB, Network, Gateway, DNS) the feeds via browser...any dependencies to network setting, DNS, ...??

frollic · October 10, 2024, 2:14pm

try to ping the four FQDNs in the URLs you posted, from the router and a client, do they resolve/work ?

I can imagine you have a list blocking access to the IPs hosting those FQDNs.

neurotransmitter · October 10, 2024, 2:20pm

Good idea - I'll check it...

neurotransmitter · October 10, 2024, 2:36pm

root@RT3200:~# ping www.spamhaus.org/drop/drop.txt
ping: bad address 'www.spamhaus.org/drop/drop.txt'

Sounds like to be blocked but I can't see any block messages in openwrt logs (banip, system)

frollic · October 10, 2024, 2:47pm

That's not a FQDN, bruh.

DBAA · October 10, 2024, 2:53pm

One failure mode is an inaccurate date and time on the router which causes some https connections to fail when checking certificates.

Note you can only ping domain names not partial URLs.
ping www.spamhaus.org not ping www.spamhaus.org/drop/drop.txt

neurotransmitter · October 10, 2024, 2:53pm

When I use "Diagnostic" ping v4 spamhaus.org - 100% packet lost

frollic · October 10, 2024, 2:55pm

Yeah, as @DBAA (and I) said, that's not a FQDN.

neurotransmitter · October 10, 2024, 2:55pm

20 sec difference

neurotransmitter · October 10, 2024, 3:08pm

root@RT3200:~# ping faz.net
PING faz.net (40.118.6.229): 56 data bytes

Process stopps...

frollic · October 10, 2024, 3:15pm

It times out, eventually, or site doesn't reply to ping, some don't.

Disable banip, see if it starts working again.
Ping the same FQDN again, if it works, add the IP to the whitelist, and re-enable banip afterwards.

neurotransmitter · October 10, 2024, 5:14pm

Jepp, it's work now, thanks...but what does that mean:

can't initialize Set for feed 'becyberv4' (rc: 137, log: )

Thanks frollic

frollic · October 10, 2024, 5:16pm

it's another one of your IP lists, by far the largest one - https://github.com/openwrt/packages/blob/master/net/banip/files/README.md

you could be running out of memory, depending on what device you use.

neurotransmitter · October 10, 2024, 6:28pm

Yes, good hint...seems to be like the T145 Blocklist for DNS...8,2 Mio entries

system · October 20, 2024, 6:29pm

This topic was automatically closed 10 days after the last reply. New replies are no longer allowed.