Menu
What's new
By:
Filters Better Search

Skynet Skynet Version v7.2.8 isn't blocking manually added domains

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

A

Arrow

Regular Contributor
Using Skynet Version v7.2.8, when I ban a domain, such as msn.com, I can still visit msn.com from a web browser on my LAN.
Any idea why?
 
firewall stats search ip 13.82.28.61

Logging Data Detected in /tmp/mnt/router/skynet/skynet.log - 6.0M
Monitoring From Jan 2 23:00:15 To Jan 5 18:44:36
21975 Block Events Detected
4604 Unique IPs
1 Manual Bans Issued

Warning: 13.82.28.61 is in set Skynet-Whitelist.
Warning: 13.82.28.61 is in set Skynet-Blacklist.
13.82.28.61 is NOT in set Skynet-BlockedRanges.

Wait. What? Why is it my whitelist? I never added it.

/jffs/scripts/firewall whitelist remove entry 13.82.28.61


================================================================================

Removing 13.82.28.61 From Whitelist
ipset v7.6: Element cannot be deleted from the set: it's not added
Saving Changes


What?
 
Try running:
Code: 
ipset list Skynet-Whitelist | grep "^13\.8"
There might be a whitelisted range of addresses.
 
I uninstalled and reinstalled Skynet.

I banned ru cn kp

Then I banned msn.com again, and I can still visit msn.com


firewall stats search ip 13.82.28.61

Logging Data Detected in /tmp/mnt/router/skynet/skynet.log - 12.0K
Monitoring From Jan 5 19:05:00 To Jan 5 19:13:20
40 Block Events Detected
36 Unique IPs
1 Manual Bans Issued

Warning: 13.82.28.61 is in set Skynet-Whitelist.
Warning: 13.82.28.61 is in set Skynet-Blacklist.
13.82.28.61 is NOT in set Skynet-BlockedRanges.

Whitelist Reason;
-*-
Blacklist Reason;
"ManualBanD: msn.com"


IP Location - United States (MICROSOFT-CORP-MSN-AS-BLOCK / AS8075)

13.82.28.61 First Tracked On
13.82.28.61 Last Tracked On
0 Blocks Total

Event Log Entries From 13.82.28.61;
Jan 05 14:08:27 Skynet: [Manual Ban] TYPE=Domain SRC=13.82.28.61 Host=msn.com

First Block Tracked From 13.82.28.61;

10 Most Recent Blocks From 13.82.28.61;


Top 10 Targeted Ports From 13.82.28.61 (Inbound);


-------- | -------- | --------------
| Hits | | | Port | | | SpeedGuide |
-------- | -------- | --------------



Top 10 Sourced Ports From 13.82.28.61 (Inbound);


-------- | -------- | --------------
| Hits | | | Port | | | SpeedGuide |
-------- | -------- | --------------




================================================================================


[#] 30738 IPs (+0) -- 15472 Ranges Banned (+0) || 40 Inbound -- 0 Outbound Conn]
 
dave14305 said:
Try running:
Code: 
ipset list Skynet-Whitelist | grep "^13\.8"
There might be a whitelisted range of addresses.
Click to expand...

ipset list Skynet-Whitelist | grep "^1
3\.8"
13.83.0.0/16 comment "CDN-Whitelist: Github"
13.84.0.0/15 comment "CDN-Whitelist: Github"
13.88.128.0/18 comment "CDN-Whitelist: Github"
13.86.128.0/17 comment "CDN-Whitelist: Github"
13.86.0.0/17 comment "CDN-Whitelist: Github"
13.87.128.0/17 comment "CDN-Whitelist: Github"
13.88.0.0/17 comment "CDN-Whitelist: Github"
13.89.0.0/16 comment "CDN-Whitelist: Github"
13.82.0.0/16 comment "CDN-Whitelist: Github"
 
Arrow said:
13.82.0.0/16 comment "CDN-Whitelist: Github"
Click to expand...
This does it.

Better to block the msn.com domain in DNS (e.g. Diversion or Pi-Hole) than to ban the IP.
 
You must log in or register to reply here.

Similar threads

R
Skynet ASN Banning
Replies
3
Views
709
SomeWhereOverTheRainBow
SomeWhereOverTheRainBow
D
Skynet, speedtests, CGNAT
Replies
3
Views
630
Treadler
Treadler
SomeWhereOverTheRainBow
Skynet Issue with skynet stats -Skynet Stats not properly displaying Ban Reason
Replies
14
Views
972
Tomo
Tomo
D
Which addon is best suited for manually blocking a handful of domains, and nothing else?
Replies
8
Views
912
drinkingbird
drinkingbird
S
Skynet Skynet ban IP not banning...
Replies
9
Views
2K
nbi
N
Similar threads
Thread starter Title Forum Replies Date
John Fitzgerald Solved Skynet running slow with install/update issues from AMTM? Asuswrt-Merlin AddOns 10
B Skynet Source LAN IP for outbound IP blocked by SkyNet Asuswrt-Merlin AddOns 8
O Skynet Installing Skynet causes router to crash and reboot Asuswrt-Merlin AddOns 26
P Skynet Skynet errors Asuswrt-Merlin AddOns 8
ChickenheadOS Skynet Skynet 7.5.8 Firewall UI Issues Asuswrt-Merlin AddOns 18
P Send stats Division and Skynet to webhook or mqtt Asuswrt-Merlin AddOns 0
BATTLEPENCIL Skynet Unable to uninstall Skynet Asuswrt-Merlin AddOns 11
U Skynet Unable to Install Skynet Asuswrt-Merlin AddOns 31
P Skynet show inbound block on Digital TV Vlan300 Asuswrt-Merlin AddOns 4
N Skynet Skynet Autobanning Failed Login Attempts? Asuswrt-Merlin AddOns 0

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 1,009 (members: 31, guests: 978)
Top