Hi Guys, Love your show I 've had a problem with viewing your show on my pc since installing ...

[G+_Gus Gemmiti]

Hi Guys,

Love your show.  I've had a problem with viewing your show on my pc since installing pfSense.  I am running pfBlocker and Snort with emergingthreatOpen.  I don't see any way to white list twit.tv.  Can you help?

[G+_610GARAGE]

Are you unable to go to the site; or just stream the show. If you are unable to stream the show, then you may have "Block Offenders" setting within snort checked.  I found that when this is checked, it will block all streaming sites.

 

Look in your snort interface, wan settings, in the "Alert" section of the page; there should be an option called "Block Offenders". Make sure this is unchecked.

[G+_Gus Gemmiti]

Hi Bob.  I actually unable to get to the site.

[G+_610GARAGE]

Ok, never had that happen before. My guess would be that pfBlocker is blocking twit's ip range, or region. However, I never used pfBlocker, so I don't know exactly how to use it.

 

Do you know whether its pfBlocker or snort that is blocking twit. If not, disable each service until you can go to twit. Than enable that service; clear logs; than go to twit. Then see what the log says. I have solved many issues this way. 

[G+_Gus Gemmiti]

Can you tell me what the IP range is for Twit.tv

[G+_610GARAGE]

174.36.55.199

 

However, I would sujest that you go to your pfsense box, Diaognostics, DNS lookup, and type in twit.tv into the "Hostname or IP" field to make sure you are using the same ip, just incase it is diferent for you.

[G+_Travis Hershberger]

Well, the twit.tv website itself is 174.36.55.199 (just do 'nslookup twit.tv' on a command line.)  The problem is that the video/audio never comes from that IP address, it's all streamed from other providers.

[G+_Gus Gemmiti]

Well this is strange. Even when I cleared all the blocks, disabled pfBlocker, Snort and HAVP I can't even ping or a nslookup on twit.tv it times out.

[G+_610GARAGE]

I assume you have internet though (ie you can ping google.com). Go to status, System logs, Firewall tab. See if twit's ip is shown there.

[G+_Gus Gemmiti]

Yes I can ping and browse normally except for twit.tv.  Here are some other hints; I can successfully ping twit's ip but not twit.tv.  Also, I do not see the ip listed in the logs you mentioned.

[G+_610GARAGE]

Sounds like a dns issue. Try changing your primary dns provider.

[G+_Gus Gemmiti]

Ok I found the problem.  It appears that I was initially unable to get to twit.tv (I think it was down at the time).  And, I read somewhere that I needed to set up (and I did) a Domain Override on the DNS Forwarder to 174.36.55.199.  As soon as I deleted the override I was able to get to the site without issue.  Thanks very much for the hints.