Search found 5 matches

Go to advanced search

by sdarot
24 Mar 2023, 14:14
Forum: Report Bugs (csf)
Topic: Cluster members do not always respond
Replies: 2
Views: 6073

Re: Cluster members do not always respond

I too have noticed this and have made some steps towards making this more performant - it may well be related to your crashing bug as well - it is to do with some of the datafiles in use by CSF/LFD and how they are locked upon a ban/unban etc I have made some adjustments to use sqlite instead of th...
by sdarot
29 Sep 2022, 23:33
Forum: General Discussion (csf)
Topic: MESSENGER, IPSET and subnet block
Replies: 2
Views: 2298

Re: MESSENGER, IPSET and subnet block

Forgot to update my solution here.
Above problem can be easily solved by adding NAT rule, using csfpre.sh, for example
iptables -t nat -I PREROUTING -s 192.168.1.100 -j ACCEPT
by sdarot
17 Jan 2020, 09:35
Forum: General Discussion (csf)
Topic: MESSENGER, IPSET and subnet block
Replies: 2
Views: 2298

MESSENGER, IPSET and subnet block

Hello, When messenger service is active, and specific subnet is blocked (in csf.deny), but one IP address of this subnet is whitelisted (in csf.allow), the user (whitelisted IP) is still being redirected to messenger service. I think it because of IPSET chains order, messenger chain before allow cha...
by sdarot
27 Sep 2018, 20:13
Forum: General Discussion (csf)
Topic: Auto-Ban trap page
Replies: 1
Views: 2219

Re: Auto-Ban trap page

sounds like a classic scenario for fail2ban usage.
by sdarot
27 Sep 2018, 20:09
Forum: General Discussion (csf)
Topic: How do I stop my IP being blocked?
Replies: 3
Views: 2599

Re: How do I stop my IP being blocked?

You can allow a whole /24 subnet
for example if your IP address is between 192.168.1.1 to 192.168.1.255 you can allow 192.168.1.1/24

Another method is to register your pc / router with dynamic dns service (noip.com for example) and add your domain to /etc/csf/csf.dyndns

Go to advanced search