Yes, you can easily block domains using WHM option:
Filter Incoming Emails by Domain
In there write:
*.from-dc.com
*.from-in.com
*.from-ky.com
*.from-mn.com
*.from-nv.com
from-pa.com
from-vt.com
That wil block any email that uses that domains.
Sergio
Search found 1042 matches
- 15 Apr 2024, 02:54
- Forum: MailScanner Front-End
- Topic: Blacklisted domain
- Replies: 1
- Views: 318
- 04 Apr 2024, 02:55
- Forum: Suggestions (csf)
- Topic: Feature Request: Conditional SSH Login Alert for Non-Whitelisted IPs
- Replies: 1
- Views: 636
Re: Feature Request: Conditional SSH Login Alert for Non-Whitelisted IPs
You can implement your own script to do that and a lot of other things; in your CSF check for the following: Block Reporting. lfd can run an external script when it performs and (sic) IP address block following for example a login failure. The following setting is to the full path of the external sc...
- 29 Feb 2024, 04:48
- Forum: General Discussion (csf)
- Topic: High number of ICMP ping packets ONLY when CSF is on
- Replies: 4
- Views: 431
Re: High number of ICMP ping packets ONLY when CSF is on
Sorry if that didn't help. But in there you can read a complete info about CloudFlare, that may be can give you a light on what else you could check. My apologize in trying to help you. 27. CloudFlare ############## This features provides interaction with the CloudFlare Firewall. As CloudFlare is a ...
- 27 Feb 2024, 23:42
- Forum: MailScanner Front-End
- Topic: Phishing fight with spamassassin and Mailscanner Front End and integration of openphish, phistank, phishstats, mailscane
- Replies: 1
- Views: 829
Re: Phishing fight with spamassassin and Mailscanner Front End and integration of openphish, phistank, phishstats, mails
This would be a great addition to MailScanner FE.
Please Sarah and Jonathan, Could you please check this and see if this could be added on the next MFE update? It will be a nice tool for fighting against PHISHING.
Regards,
Sergio
Please Sarah and Jonathan, Could you please check this and see if this could be added on the next MFE update? It will be a nice tool for fighting against PHISHING.
Regards,
Sergio
- 27 Feb 2024, 23:23
- Forum: General Discussion (csf)
- Topic: CSF SMTP Auth Blocking Issue for Mailgun
- Replies: 4
- Views: 591
Re: CSF SMTP Auth Blocking Issue for Mailgun
Have you tried to add MAILGUN IPs in CSF white list?
Check https://www.webhostingtalk.com/showthread.php?t=1683550
read the 3rd post that will give you idea on how to get MAILGUN IPS
Sergio
Check https://www.webhostingtalk.com/showthread.php?t=1683550
read the 3rd post that will give you idea on how to get MAILGUN IPS
Sergio
- 27 Feb 2024, 23:16
- Forum: General Discussion (csf)
- Topic: How to unblock IP blocked by LFD on a blocklist
- Replies: 1
- Views: 211
Re: How to unblock IP blocked by LFD on a blocklist
Hi. Go to CSF, then go to "LFD BLOCKLISTS", look in there the blocklists that you are using. Check if the IP is blocked by any of the BLOCK LISTS that you are using, to do that go to /var/lib/csf and search the IP on all the /var/lib/csf/csf.block.NAME black lists in there. The next step w...
- 27 Feb 2024, 22:20
- Forum: General Discussion (csf)
- Topic: High number of ICMP ping packets ONLY when CSF is on
- Replies: 4
- Views: 431
Re: High number of ICMP ping packets ONLY when CSF is on
Hi.
Please read https://download.configserver.com/csf/readme.txt
maybe some of your questions will be answered there.
Sergio
Please read https://download.configserver.com/csf/readme.txt
maybe some of your questions will be answered there.
Sergio
- 27 Feb 2024, 22:12
- Forum: General Discussion (csf)
- Topic: Custom REGEX rules for CSF.
- Replies: 93
- Views: 2015350
Re: Custom REGEX rules for CSF.
Hi. This area is not to resolve doubts about REGEX rules, please use the regular forum.
When you move your question to that area I will answer it there, thank you.
Sergio
When you move your question to that area I will answer it there, thank you.
Sergio
- 03 Feb 2024, 01:18
- Forum: General Discussion (csf)
- Topic: Barracuda RBL download anywhere or other comparable?
- Replies: 1
- Views: 302
Re: Barracuda RBL download anywhere or other comparable?
Are you using ModSecurity?
Does ModSecurity gives you the rule number that the offending IPs are triggering?
If so, then you can block the attacks in realtime creating your own CSF rules.
Sergio
Does ModSecurity gives you the rule number that the offending IPs are triggering?
If so, then you can block the attacks in realtime creating your own CSF rules.
Sergio
- 25 Jan 2024, 20:57
- Forum: MailScanner
- Topic: Out of the box spam filters trapping MORE than MailScanner
- Replies: 1
- Views: 1234
Re: Out of the box spam filters trapping MORE than MailScanner
The best thing is to create your own spamassassin rules for the spam that is not catched by MSFE and assign a very high score. Then create rules for CSF (firewall) to block the server that sent the spam and at last another CSF script to check if more that 10 IPs from the same IP range have been send...