I am new at eBlocker. Today I've installed it from the scratch. I have enabled HTTPS. But now unfortunately, I can not connect the web interface of my Fritzbox 7490 via Browser with fritz.box. Another issue is that I can't connect via Tunnelblick VPN with my remote desktop. Sometimes Tunnelblick can't establish a connection, sometimes it terminates the session as soon as I want MS Remote Desktop to connect the remote server. And at all, I can't send and receive emails.
What do I have to to in order to get my machine working as before but with eBlocker enabled?
Another issue is that I can't connect via Tunnelblick VPN with my remote desktop.
Add the tunnelblick profile to eBlocker as VPN provider and enable for client via dashboard or controlbar.
terminates the session as soon as I want MS Remote Desktop to connect the remote server.
Make sure you learn about Trusted Apps and enable for MS / your remote server.
And at all, I can't send and receive emails.
Will be fixed with next update. In the meantime disable DNS firewall.
If you have further questions please provide these infos.
THX!
Another issue is that I can't connect via Tunnelblick VPN with my remote desktop.
Add the tunnelblick profile to eBlocker as VPN provider and enable for client via dashboard or controlbar.
Probably I misunderstand you. My computer at home is within the eBlocker network. So, I do not want tunneling the eBlocker from outside into my private network, but in the exact other direction: I want to connect my private computer via Tunnelblick VPN with a remote desktop outside my private network. So, where do I find the TB profile and where do I have to add it to eBlocker?
@facebita No misunderstanding. See here for more infos: https://eblocker.github.io/help/en-us/360000522754.html
Please make sure to check the knowledge base - and get an overview of all features in the manual... (all linked on the help page named above the forum).
THX!
Posted by: @facebita
And at all, I can't send and receive emails.
Will be fixed with next update. In the meantime disable DNS firewall.
I have disable DNS firewall. But neither receiving nor sending of emails is working.
macOS 10.13.6 and macOS 10.15.7,
eBlockerOS 2.5.6
running on Raspberry 4 connected with Fritzbox 7490 running 7.21
filter list version 2020-11-15-07-15-02
network mode automatic
network address, mask and router:
But neither receiving nor sending of emails is working.
Which email app are you using?
If „Apple Mail“, please make sure the eBlocker certificate is correctly installed in the macOS Keychain.
Thanks much.
Which email app are you using?
If „Apple Mail“, please make sure the eBlocker certificate is correctly installed in the macOS Keychain.
I think I have correctly installed the certificate into the keychain. Anyway, all tests specified in the eBlockers installation guide were passed.
Additionally, I have installed the certificate on my iPhone at iOS 14 as well. And there I suffer the same issue: If eBlocker is activated the communication between Mail.app and the server has no success.
@facebita Are you seeing the eBlocker icon while using Safari on HTTPS websites?
To make sure the cert is installed correctly please verify that the eBlocker Function Test (in eBlocker Dashboard) shows all green in Safari.
Please share the email provider and protocol (imap/pop/http(s)) you are using to access your emails as well as the emailer application. Screenshot of email settings would be helpful.
THX!
@facebita Are you seeing the eBlocker icon while using Safari on HTTPS websites?
Yes.
To make sure the cert is installed correctly please verify that the eBlocker Function Test (in eBlocker Dashboard) shows all green in Safari.
Yes.
Please share the email provider and protocol (imap/pop/http(s)) you are using to access your emails as well as the emailer application. Screenshot of email settings would be helpful.
We talk about IMAP servers hosted at Hetzner with mail.your-server.de.
IMAP Port 993 authetification by external TLS server certificate
SMTP Port 25 host name sslout.de without server certificate
@facebita Hm. IMAP should not be touched by eBlocker and it‘s the first time I‘m hearing about issues. Could you please be clear on this:
Please share ... the emailer application
I suspect your emailer might be opening other connections rather than imap too.
Could you please run the settings>https>manual recording for your device and open the emailer while recording runs. Results of recording would be helpful...
Have you added other blocker lists next to the eBlocker curated ones? If so, please disable...
THX!
Could you please run the settings>https>manual recording for your device and open the emailer while recording runs. Results of recording would be helpful...
I can not see the domain of the IMAP server in the attached screenshot.
Have you added other blocker lists next to the eBlocker curated ones?
I think I didn't.
Hi,
look at your PC our Notebook for the Nameresolution like:
In am Command-Box type:
nslookup mail.your-domain.de
or with DIG
dig mail.your-domain.de
did you get back an IP-Address??
Show the example attached!
In your Fritzbox eBlocker is set to get always the same IP-Address and give eBlocker full access to the internet.
regards
PIO78
did you get back an IP-Address?
Yes.
In your Fritzbox eBlocker is set to get always the same IP-Address and give eBlocker full access to the internet.
eBlocker has full access to the internet. But regarding permanent IP address: I have set the eBlocker to maintain the DHCP server, rather than Fritzbox. Insofar I followed https://vimeo.com/user92153728. Therefore, now I can not set in Fritzbox the IP address of eBlocker as fixed. But as far as I see, eBlocker ever has the same IP address since I have installed it.
Obviously there was something wrong with the setting. By other reasons I have had to restart the Fritzbox. And, surprise, surprise, now the communication with the mail server seemlessly works too.
Obviously there was something wrong with the setting
I‘m not sure which settings you talk about. eBlocker? Fritzbox? Mail.App? macOS? iOS?
To be sure: just rebooting your fritzbox solved the issue with your mails or did you change some „settings“ (which)? 🤔
Your answer can help other users running into the same issue.
Can we mark this thread solved then?
THX!
Obviously there was something wrong with the setting
I‘m not sure which settings you talk about. eBlocker? Fritzbox? Mail.App? macOS? iOS?
Fritzbox. The DHCP server of Fritzbox just ran parallel to eBlockers DHCP server.
Hello together.
I have the same issue with Mail blocking (imap.web.de and imap.mail.de), but I get it not solved by reboot the router. Saaaadly...
My setup is like this:
Router AVM 6660 (cable modem integrated)
Mail Programm Thunderbird 78.5.0 x64
Rasp 4
eblocker v2.5.6
EBlocker Network automatic mode
Blocking List 2020-11-20-07-15-03
eBlocker HTTPS aktive and zertificate installed correctly in Thunderbird and System
Browser Chromium works fine
When I start Thunderbird to get my mails, I get the message:
"Could not connect to mail server imap.mail.de because it was denied"
I recognized that my router gives the same IP adress to himselve and the eblocker (192.168.178.1), but eblocker dashboard said 192.168.178.26 for himself. Strange....
What do you need to help me with this issue?
Best regards in advance.
I recognized that my router gives the same IP adress to himselve and the eblocker (192.168.178.1), but eblocker dashboard said 192.168.178.26 for himself. Strange....
This is normal in Automatic Network mode. Background: even eBlocker has ...178.26 it makes all devices believe it‘s 178.1 to catch the packets before the router gets them...
"Could not connect to mail server imap.mail.de because it was denied"
Can you please pause eBlocker to verify the issue is caused by eBlocker.
THX!
Thank you for the fast answer and the explanations.
I already tried to:
- deactivate HTTPS (no success)
- deactivate eBlocker for this PC --> Mail server works fine, eBlocker does block it somehow.
What can I do else?
I am thinking about manual network setup, but my router shows no possibility to deactivate DHCP.
Or do I need to adress the DNS setting in the router to eblocker IP?
What can I do else?
Settinger > HTTPS > Manual Diagnose > Start
Then start your mail client. Wait until the failure occurs. Then click STOP in the diagnose tool. Look at the listed connections and deactivate eBlocker on those connections which are necessary for email. Save these settings for your email client app.
the listed connections
No connections were found. It is strange, because there must be a try.
I also recognized that some Games are not working during authentification and HTTPS exceptions does not work. Therefore I think its not a HTTPS issue but an other kind of network issue. Also HTTPS deactivation does not help.
Any other ideas?
@myblocker settings>DNS firewall off? Should be off. See above.
Please run Function Test in dashboard and post results,
Don‘t touch to many things at once (i.e. network settings) as it gets more difficult to track down issues step by step.
THX!
See screenshot.
DNS fire off.
@myblocker eBlocker is not blocking anything on imap, so the source of error must be something else. If disabling https and dns FW did not do the trick, I have no idea.
You can try a „nslookup imap.mail.de“ from windows command shell (type cmd in win menu) to see if the domain is resolved correctly (post results here), But if dns fw is off, this should be resolved by your provider 🤔
Have you rebooted everything?
THX!
Which device runs the DHCP server?
Hello again.
I made the lookup test (see attached), the response is the same, but Thunderbird behaviour is different:
Off means: EBlocker disabled for this device --> thunderbird gets contact and is working fine
On means: EBlocker enabled for this device --> thunderbird gets NO contact
In both cases I had these settings:
DNS off
HTTPS off
DHCP by fritz box
network mode automatic
Fritz box and eBlocker restarted before this test in this order
I also regognizes that I can not login on your website, as long as the eBlocker is active. I get the stange message "invalid nounce". Is that helpful?
Yes, I also think the issue is somewere else, but how can I find it out, maybe with an diagnostic report?
I am close to make a factory reset or an individual network setup. I need to find a solution, because this Raspberry is only borrowed and it is my decission of buying or not.
Any ideas?
I also regognizes that I can not login on your website, as long as the eBlocker is active. I get the stange message "invalid nounce". Is that helpful?
Nothing todo with eBlocker at all.
That‘s a caching problem, which occurs if your browser has an old version of the login page cached. Just reload the the login page before you enter your credentials.
Regarding your issue: Have you rebooted the client as well? Are there any logs in Thunderbird to share here? Could you please share a screenshot of exact error message as I have no idea for the cause.
THX!
Thank you for all your feedback up to now.
Attached you will get the error message, which appears in the lower right corner after starting the IMAP connection (message is only in german, sorry).
Yes I rebooted already all clients
In meantime I did a factory reset of the eBlocker. After that I diconnected all (router, eBlocker, clients) and started to boot step by step:
- Router
- eBlocker
- Clients
Then I activate the licence and disabled the DNS. Nothing else changed. Same issue: IMAP is blocked with eBlocker on, IMAP is working fine without eBlocker.
I am just before individual network setup instead of automatic. Maybe this fritz box 6660 is somehow not compatible. But in your compatibility list the 6660 is not listed as incompatible.
In my fritzbox network settings I found these settings, are they relevant:
Network UPuP (universal plug and play) active?
DNS rebind protection?
What do you think?
Hello again.
I made a logging comparison with thunderbird. See attached picture of text file comparison.
The abord log was very short (left side).
Do you see a helpful difference?
Best regards
MyBlocker
@myblocker No idea. I use Thunderbird & imap as well - without any problems 🤔
Have you tried a different emailer i.e. Windows mail to make sure it‘s not a Thunderbird plugin getting in the way here (what I personally suspect). You might also want to disable all plugins in Thunderbird for a test...
Regarding your log screenshot: The called URL in line 5 is completely different 😮 🤔
THX!
@myblocker I also use Thunderbird and imap without any problems.
Maybe your issue is related to this (German only): https://www.thunderbird-mail.de/article/107-kein-e-mail-empfang-mehr-nach-update-auf-thunderbird-version-78-4-0-komplette-ve/
There is a part about Certificates... and maybe that's the cause here...?
@random Interesting ideas, I do not consider it yet.
Other emailer, I have not installed another one.
I only have one Plugins, and this is disabled.
Sorry for the confusion of line 4+5, this is because my other Mail account (imap.mail.de) was also triing to get in contact with the server, but i break it at the password question. The imap.web.de i tried to get in contact with.
@benne Thank you for this article, but I already read it and tried the tsl 1 version. Did not work.
The certificate article was new for me. But this should only be an issue, when HTTPS filter is active, or am I wrong?
In total I see all this issues with only eBlocker switch on (DNS off, HTTPS off):
- Thunderbird IMAP connections
- One game client can not authentificate
- Signal desktop messanger gets not contact to the server (it seems for me like I have HTTPS filter on, but I did not). This isse I solved before eBlocker reset with the eBlocker whitelist
Do you know, if someone already had installed successfully an eBlocker with the Fritzbox 6660?
I will try to make a manual network setup, to test this topic also. Or do you have any doubts?
@myblocker To be sure it's not Thunderbird related, please try a different emailer and we take it from there. Windows has "mail" pre-installed and Apple something similar...
BTW: We just had our eBlocker core members meeting and discussed your imap issue: No one has and idea. Others are using eBlocker and Thunderbird as well as several other emailers - all work just fine... So conclusion was: it must be something else "very specific" to your environment.
I personally doubt it's your router or the eBlocker network config - but there is something new to learn every day 😉
Good luck!
try a different emailer
I tried these combinations and all did not work, when eBlocker is ON:
Win10 + TB
Win10 + Sylpheed
Win8 + TB
Android10 + FairMail
Standard mail app on Windows 10 is not anymore installed.
Everytime I get synchronisation error / connection error.
Do you know anyone, who has Fritzbox 6660 successfully running eBlocker in automatic network mode?
Should I try to make a individual network setup in eBlocker?
Btw: Many thanks for your background work for this topic, I appreciate your efforts.
I do the following Test with my Testequipment:
new Windows 10 with Thunderbird 78.5.0
eBlocker 2.5.6 (Automaticmode)
Fritzbox 7360
HTTPS on, no VPN, no TOR
IMAPs over Port 993 --> working 👍
SMTP starttls Port 587 --> working 👍
ALL OK
Sorry can't reproduce this
regards
PIO78
Hello Pio.
Thanks for your double check. That shows me again, that it must be an issue with my setup.
I bought now my own RaspPi and I will wait until it arrives. Then I will setup the eBlocker software completly new to this new one. Then I will try again.
If this it does not work, then I think its an incompatible router issue. In this case i will try make manual network setup accordingly to your manual. I never changed the DHCP server within my network, this will be the first time.
Thanks for all your efforts, I will report you my findings.
@myblocker Sounds like a plan!
Maybe you want to check out a different email provider too. Maybe that's the source of error?
The strange this is, that eBlocker doesn't touch imap and your router shouldn't touch it either 🤔
But setting up eBlocker as DHCP doesn't hurt and is the best choice in terms of network stability anyway.
Thanks again for your support.
Hello Again, I am back with my own Pi and fresh setup.
What I have done now:
- SD card formated, to delete all former data
- Installed again eBlocker 2.5.6 on this SD cad with balena
- Pi plug in network connection to router + SD card
- Pi plug in power cable first time
- wait until I can enter setup
- aktivate licence + update to 2.5.8
- deactivate DNS
- keep HTTPS deactive
- all other options left untouched
Result is the same linke before, as long as the eBlocker is active:
- No http connections possible
- No IMAP server reachable
- Game clients do not connect to login servers
- Signal desktop messenger has connection issues
Now I will do a manual network setup according to your manual chapter 8.9 and the step by step description of the eBlocker itself.
Afterwards I will report again.
THANK YOU guys, the manual modus does solve it!
Now the HTTPS + IMAP + Signal is working, great. Thank you for the good guidance by your documents and in the software!
Please consider the Fritzbox 6660 to place in the router compatibility list only for manual modus.
Issue was with OS 7.21 - 7.22.
Will be fixed with next update.
Is it fixed now with 2.5.8?
Release notes says:
- Fix: DNS Firewall responds to requests of all types, e.g. MX, PTR, TXT, etc.
So that I can switch back on the DNS firewall?
@myblocker We'll mark the Fritzbox 6660 to be compatible in Manual Mode only.
So that I can switch back on the DNS firewall?
Yes, please.
Thanks for the feedback!