dump

The following options are available for the dump sub-command:

-a

Show all database entries, by default it shows only the active ones. Inactive entries will be shown with a last-access (or, with -r, the remaining) time of ‘never’.

-b

Show only the blocked entries.

-D dbname

Specify the location of the blocklistd database file to use. The default is /var/db/blocklistd.db.

-d

Increase debugging level.

-n

Don't display a header.

-r

Show the remaining blocked time instead of the last activity time.

-w

Normally the width of addresses is good for IPv4, the -w flag, makes the display wide enough for IPv6 addresses.

The output of the dump sub-command consists of a header (unless -n was given) and one line for each record in the database, where each line has the following columns:

‘rulename’

The packet filter rule name associated with the database entry, usually blocklistd.

‘address/ma:port’

The remote address, mask, and local port number of the client connection associated with the database entry.

‘id’

column will show the identifier for the packet filter rule associated with the database entry, though this may only be the word ‘OK’ for packet filters which do not create a unique identifier for each rule.

‘nfail’

The number of failures reported for the client on the noted port, as well as the number of failures allowed before blocking (or, with -a, an asterisk ⟨*⟩)

‘last access’ | ‘remaining time’

The last time a the client was reported as attempting access, or, with -r, the time remaining before the rule blocking the client will be removed.