"Did you make any changes, especially related to "LOWMEM"?"
Not that I'm aware of. I think the only thing I did was whitelist ports 80 and 443, TCP, out only.
"What's your /etc/pgl/pglcmd.conf?"
Code:
WHITE_TCP_OUT="80 443"
INIT="0"
CRON="0"
"Did you compile on your own or do you use the binary from my repository?"
I always go to http://moblock-deb.sourceforge.net and follow the install instructions there (I use your repository). This is what I put in my sources list:
Code:
deb http://ppa.launchpad.net/jre-phoenix/pgl-experimental/ubuntu precise main
deb-src http://ppa.launchpad.net/jre-phoenix/pgl-experimental/ubuntu precise main
I also added your ppa from here:
https://launchpad.net/~jre-phoenix/+archive/ppa
But on the last step, installing the .deb file, the software center said it was a dummy package and being ignorant of what that meant, I didn't install it. I was trying to install this because of what I had read earlier in this thread and thought it might solve this problem.
Just as a side note, I want to say thanks for the clear, step-by-step install instructions at moblock-deb.sourceforge.net. Having that there has always made a HUGE difference for me. I've even used it to help me figure out how to install other software when I was still learning how to do it.
So I removed all the old lists (and did "sudo pglcmd force-reload"),
made the multicast blocklist and added it (through the GUI),
restarted my system,
turned on pglgui, pressed start, got no error but the list didn't load.
Pressed start again and got the pop-up error message.
Here's the logs when I tried that:
pgld.log:
Code:
Oct 30 18:28:09 INFO: Connected to dbus system bus.
Oct 30 18:28:09 INFO: Started.
Oct 30 18:28:09 ERROR: Error loading /var/lib/pgl/master_blocklist.p2p
Oct 30 18:28:09 INFO: Blocking 0 IP ranges (0 IPs).
Oct 30 18:28:09 ERROR: Cannot load the blocklist(s)
pglcmd.log:
Code:
2012-10-30 18:28:08 PDT Begin: pglcmd start
Inserting iptables ...
..Setting up iptables for INPUT:
....Creating chain and inserting NFQUEUE rule ...done.
....Whitelisting IP ranges ...done.
....Inserting block rule ...done.
..Setting up iptables for OUTPUT:
....Creating chain and inserting NFQUEUE rule ...done.
....Whitelisting ports ...done.
....Whitelisting IP ranges ...done.
....Inserting block rule ...done.
..Setting up iptables for FORWARD:
....Creating chain and inserting NFQUEUE rule ...done.
....Inserting block rule ...done.
..Allowing loopback traffic: INPUT OUTPUT ...done.
..Allowing OUTPUT traffic to DNS server 127.0.0.1 ...done.
..Allowing FORWARD traffic to DNS server 127.0.0.1 ...done.
..Allowing LAN traffic ...
....INPUT from 10.0.0.0/24 ...done.
....OUTPUT to 10.0.0.0/24 ...done.
....FORWARD from 10.0.0.0/24 to 10.0.0.0/24 ...done.
..LAN traffic allowed.
..Activating chains:
....INPUT
....OUTPUT
....FORWARD
..Chains activated.
Iptables inserted.
Starting pgld ...done.
Starting pglcmd.wd ...done.
2012-10-30 18:28:09 PDT End: pglcmd start
2012-10-30 18:28:57 PDT Begin: pglcmd start
Problematic daemon status: 1
* pgld is not running
I even tried manually adding the multicast IP range to the master_blocklist.p2p but it didn't take. But I don't know what the format looks like for IP ranges in this file anyway (I'm assuming it's different and don't even know if this would work).
I'd like to try adding a list just using the command line, but honestly, I don't know how to do it. I see
Code:
pgld [-c CHARSET] -m [BLOCKLIST(S)]
so if I have my list here: /home/anonymous/Lists/Multicast.gz, is this the command to load it?:
Code:
pgld -c UTF-8 -m /home/anonymous/Lists/Multicast.gz
I don't even know if it's UTF-8 or not, let alone figuring that out.
I also tried using the URL instead of local lists (blocklist name was bluetack_dshield here), and got some different results (pgld.log was the same as before though):
pglcmd.log:
Code:
2012-10-30 18:32:34 PDT Begin: pglcmd stop
Stopping pglcmd.wd ...done.
Deleting iptables ...
..Executing iptables remove script /var/lib/pgl/.pglcmd.iptables.remove.sh ...done.
..Removing iptables remove script /var/lib/pgl/.pglcmd.iptables.remove.sh ...done.
Iptables deleted.
Stopping pgld/sbin/start-stop-daemon: warning: failed to kill 3675: No such process
...done.
2012-10-30 18:32:34 PDT End: pglcmd stop
2012-10-30 19:02:45 PDT Begin: pglcmd reload
pgld is not running, doing nothing.
2012-10-30 19:02:45 PDT End: pglcmd reload
2012-10-30 19:02:58 PDT Begin: pglcmd update
Updating blocklists ...
Updating bluetack_dshield... done.
Extracting bluetack_dshield, detected gz... done.
Blocklists updated.
pgld is not running, doing nothing.
2012-10-30 19:03:16 PDT End: pglcmd update
2012-10-30 19:04:20 PDT Begin: pglcmd start
Building blocklist ...
WARN: Invalid ASCII line: Binary file standard input matches
ERROR: Error opening (null) as binary.
INFO: Blocking 0 IP ranges (0 IPs).
Blocklist built.
Inserting iptables ...
..Setting up iptables for INPUT:
....Creating chain and inserting NFQUEUE rule ...done.
....Whitelisting IP ranges ...done.
....Inserting block rule ...done.
..Setting up iptables for OUTPUT:
....Creating chain and inserting NFQUEUE rule ...done.
....Whitelisting ports ...done.
....Whitelisting IP ranges ...done.
....Inserting block rule ...done.
..Setting up iptables for FORWARD:
....Creating chain and inserting NFQUEUE rule ...done.
....Inserting block rule ...done.
..Allowing loopback traffic: INPUT OUTPUT ...done.
..Allowing OUTPUT traffic to DNS server 127.0.0.1 ...done.
..Allowing FORWARD traffic to DNS server 127.0.0.1 ...done.
..Allowing LAN traffic ...
....INPUT from 10.0.0.0/24 ...done.
....OUTPUT to 10.0.0.0/24 ...done.
....FORWARD from 10.0.0.0/24 to 10.0.0.0/24 ...done.
..LAN traffic allowed.
..Activating chains:
....INPUT
....OUTPUT
....FORWARD
..Chains activated.
Iptables inserted.
Starting pgld ...done.
Starting pglcmd.wd ...done.
2012-10-30 19:04:21 PDT End: pglcmd start
2012-10-30 19:05:01 PDT Begin: pglcmd reload
Problematic daemon status: 1
* pgld is not running
2012-10-30 19:05:16 PDT Begin: pglcmd start
Problematic daemon status: 1
* pgld is not running
Well, sorry it's been so difficult! I'll try anymore suggestions you have and I'd really like to try to load a list with the command-line only; if you don't mind teaching me how.
Bookmarks