Unable to access ntopng4/11/2023 ![]() Per their package description, “ntopng (replaces ntop) is a network probe that shows network usage in a way similar to what top does for processes.” To test my feeds, I tried to visit an advertising site directly, and the router blocked my DNS request!Īs a bonus, I also setup ntopng for some basic visualization. Once I had my feeds selected, I added them to my new DNS Group. To fix this you will need to remove the block, clear the feeds, clear the caches, and possibly restart your router. If you do this (trust me, I did at first), then you will only block your access to the actual block list feeds in question. NOTE: Do not put a link to the Pi-hole ad block list directly, but rather to each individual entry. I started with a number of lists from the Pi-hole ad block list. Selecting the DNSBL Feeds menu option and clicking “Add” allowed me to create a new DNS Group with any number of block list feeds. With the basic settings in place, it was time to set up my actual block list! I enabled DNSBL, set my Virtual IP to 10.10.10.1, and kept my listening ports and interface default. I enabled the blocker, told the settings to persist, and set the CRON job to run every 3 hours.Īfter I enabled the blocker, I clicked on DNSBL to configure my block list. Once I installed the plugin, I was able to configure it by going to Firewall -> pfBlockerNG. Manage IPv4/v6 List Sources into ‘Deny, Permit or Match’ formats.” To quote their description, “pfBlockerNG is the Next Generation of pfBlocker. Thank you for your assistance.To start, I installed the pfBlockerNG package by going to System -> Package Manager -> Available Packages. It's just unnecessary points of failure when you're local to the OnPlus agent. Just my opinion, but I'll need these other port issues resolved to leverage the temporary tunnels built by the OnPlus portal to remote client sites to remotely access their devices without requiring an on-demand VPN, so it really doesn't matter in the end. It still doesn't work internally which causes me to draw the conclusion that it's my ACLs limiting outbound access from internal systems.Īs a side note, it would have been nice to simply log into the agent locally using its local IP and, after enabling ntop, had another menu on the agent screen to take me to the ntop config rather than having to leverage the temporary tunnels built by the OnPlus portal to the OnPlus agent to access the ntop configuration. I rebooted the OnPlus agent and then thought to try it from an outside system and it worked. ![]() I made some changes internally to give the OnPlus agent more internet access. It looks like it might have been either a PBR issue at my border router regarding the necessary ports being opened or a simple reboot of the OnPlus agent. If you were to set you PC's DNS server to use '4.2.2.2' for DNS resolution, do things start working? Windows Server?).Īre you able to remotely connect to other devices at your site? What is your DNS setup? Are you going through a local DNS caching server (i.e. I've verified that it works for me, but that doesn't help you. The screen shots you posted suggest that there's a DNS resolution issue for the cross-launch services. I'm sure that no matter what tools you have, we'd expect that you gets something like:īear:~ jamwyatt$ nslookup Since I'm on Unix like environments, I use tools like nslookup and dig. Can you try doing a DNS resolve of the domain
0 Comments
Leave a Reply.AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |