ConfigServer Community Forum

I think I found it

PS_PORTS=0:65535,ICMP

Can someone confirm that I can remove ICMP from this line and that it will simply block ICMP traffic from my box, but also will not blacklist someone who's trying to ping ?

Thanks

Hi all, I see that my csf blocks a lot of IP that are just trying to ping my server. I understand that a lot of people ping before they attack.. but a lot ping just to check the latency. Is it possible to block ICMP/8 in csf, but NOT block an IP address who is trying to ping ? (Basically, the server...

Here you go:


This is in csf configuration file:


Enable logging of dropped connections to blocked ports to syslog, usually
/var/log/messages. This option needs to be enabled to use Port Scan Tracking.

DROP_LOGGING = Default: 1 [0-1]

Hi all,

I am trying to find a way to add logs (iptables -A INPUT -J LOG) at the end of the default INPUT, so when a rule is not matched, it shows up in /var/log/messages (centos).

Anyone know how to do that ?

Thank you

--

Never mind, I found out and it is working now.

I forgot an important thing.

Edit /etc/csf/csf.conf , and change
to

Hi all, In order to have CSF work with Asterisk, and protect it, this is what you need to do (this is working for Asterisk 1.8.15 : Make sure that you have a file /etc/asterisk/logger.conf with the following line: messages => notice You line can have more option in it, for example: messages => notic...

Still working on it with sergio. We have a couple of bugs to fix before he releases it.

Sergio my apologies, I was traveling oversea for the past 7 weeks.
I'm back and will give it a shot and answer you today.

Thank you - I will try tomorrow during the day .

The error shows up in /var/log/asterisk/messages [2014-03-24 21:15:18] NOTICE[18393] chan_sip.c: Registration from '"X-Lite"<sip:1000@192.168.1.242>' failed for '192.168.1.101:5140' - Wrong password [2014-03-24 21:15:22] NOTICE[18393] chan_sip.c: Registration from '"X-Lite"<sip:1...