Search found 31 matches
- 09 Dec 2017, 12:40
- Forum: General Discussion (csf)
- Topic: Can i ignore user or mailbox when RT_AUTHRELAY_LIMIT is reached?
- Replies: 1
- Views: 2159
Can i ignore user or mailbox when RT_AUTHRELAY_LIMIT is reached?
Hello, Can i ignore user or mailbox when RT_AUTHRELAY_LIMIT is reached? BACKGROUND: i am sending an e-mail from a PHP script from server A from a domain protected by cloudflare. The e-mail is sent from a PHP script via SMTP which is locared on server B on server B is CSF RT_AUTHRELAY_ALERT = on RT_A...
- 31 Oct 2017, 09:24
- Forum: General Discussion (csf)
- Topic: CSF test fails
- Replies: 4
- Views: 5341
Re: CSF test fails
lsmod|grep -E "owner|multiport" xt_owner 2258 19 xt_multiport 2716 38 vzctl exec CTIDHERE perl /usr/local/csf/bin/csftest.pl|grep FAILED Testing ipt_multiport/xt_multiport...FAILED [FATAL Error: FATAL: Could not load /lib/modules/2.6.32-042stab093.5/modules.dep: No such file or directory] ...
- 29 Sep 2017, 12:01
- Forum: Suggestions (csf)
- Topic: bogon blocking only on some interfaces
- Replies: 2
- Views: 4080
Re: bogon blocking only on some interfaces
As a noob, i bet this is not possible in CSF, unless you whitelist bogons in csf.ignore (in csf.allow too?) and then manually block them in iptables for certain interface:
IN:
iptables -A INPUT -i eth0 -s BOGONIP -j DROP
OUT:
iptables -A OUTPUT -i eth0 -s BOGONIP -j DROP
i am probably wrong
IN:
iptables -A INPUT -i eth0 -s BOGONIP -j DROP
OUT:
iptables -A OUTPUT -i eth0 -s BOGONIP -j DROP
i am probably wrong
- 25 Sep 2017, 20:38
- Forum: General Discussion (csf)
- Topic: Csf Does Not Block Attacks from Cloudflare
- Replies: 4
- Views: 5873
Re: Csf Does Not Block Attacks from Cloudflare
the bad IP can only be caught by the next layer, your web server software, typically apache or nginx, once it fully decodes the request and inspects the headers (another option is the third layer of the PHP or Perl application) so unfortunately this is out of the hands of CSF Apache module "mo...
- 25 Sep 2017, 15:42
- Forum: General Discussion (csf)
- Topic: Csf Does Not Block Attacks from Cloudflare
- Replies: 4
- Views: 5873
Re: Csf Does Not Block Attacks from Cloudflare
> IP match in csf.allow, block may not work
does this mean that you have that IP listed in /etc/csf/csf.allow ?
Also i am a noob, but isn"t possible that CSF blocking 403 and not 406 ?
does this mean that you have that IP listed in /etc/csf/csf.allow ?
Also i am a noob, but isn"t possible that CSF blocking 403 and not 406 ?
- 13 Apr 2017, 20:13
- Forum: Suggestions (csf)
- Topic: [Idea] Enter custom iptable rules in CSF UI
- Replies: 1
- Views: 3525
Re: [Idea] Enter custom iptable rules in CSF UI
Yes, please allow adding custom iptables rules upon csf start. I found interesting rules here: https://javapipe.com/iptables-ddos-protection Which i would like to use. Problem is that i think they are erased when csf is restarted? Update: it do not seems like they are erased upon csf restart, but wh...
- 13 Apr 2017, 19:51
- Forum: General Discussion (csf)
- Topic: Why Block My ip?
- Replies: 1
- Views: 1991
Re: Why Block My ip?
You found solution? Tried to ask on Direct admin forums?
Tried to watch /var/log/lfd.log when the issue happen?
Tried to watch /var/log/lfd.log when the issue happen?
- 13 Apr 2017, 19:48
- Forum: General Discussion (csf)
- Topic: CSF no longer works, get error or blank page
- Replies: 4
- Views: 3959
Re: CSF no longer works, get error or blank page
Try to disable csf -X Work on the server to see if it is problem free. After some days, edit /etc/csf/csf.conf and use testing mode enable it csf -e watch /var/log/lfd.log and other server logs when you experience timeouts or such. Also if you want to auto-start lfd if it is not running, try cronjob...
- 13 Apr 2017, 19:43
- Forum: General Discussion (csf)
- Topic: MESSENGER not working when on HTTPS
- Replies: 2
- Views: 2934
Re: MESSENGER not working when on HTTPS
i do not know what is MESSENGER template, but try to make sure HTTPS is working on the server. Trying to pause CSF. Watching log file /var/log/lfd.log
- 13 Apr 2017, 19:40
- Forum: General Discussion (csf)
- Topic: CSF and proxy + python
- Replies: 2
- Views: 5941
Re: CSF and proxy + python
You added the ip to the csf.ignore and csf.allow, but did you restarted csf? (csf -r)
Also check /var/log/lfd.log to see what happens during that timeout.
If some local script/process is involved, try adding it to the csf.pignore or such files.
Also check /var/log/lfd.log to see what happens during that timeout.
If some local script/process is involved, try adding it to the csf.pignore or such files.