ConfigServer Community Forum

showed up today in the logs Retrieved and blocking blocklist XYZ IP address ranges IPSET: loading set new_XYZ with 167 entries IPSET: switching set new_XYZ to bl_XYZ *Error* IPSET: [ipset v6.19: Sets cannot be swapped: the second set does not exist] (btw on another server not using IPSET the blockli...

Does the rblcheck code use the local dns resolver to query the rbl?

Or does it bypass dns and make its own direct call to the rbl server?

aha, finally found it /usr/local/csf/lib/ConfigServer/RBLCheck.pm imports /usr/local/csf/lib/csf.rbls which currently contains 43 servers I kind of wish it was just externalized into /etc/csf/ Because since csf.rbls can change with every upgrade, it can just include more and more rbls Unless there i...

Grepping is not helping me here, maybe I am searching badly.

I assume the hard coded internal list was chosen for a reason instead of the blocklist method where they are externalized by default?

I've never seen my blocklist change but if you cannot figure out where it is coming from

chattr +i /etc/csf.blocklists

will stop anything from writing to it or deleting it (including you)

just remember to do a -i before you edit it

You guys (and gals?) are fantastic. Keep up the great work.

None of these files exist my @files = ("/var/named/chroot/etc/named.conf","/etc/named.conf","/etc/bind/named.conf","/var/named/chroot/etc/bind/named.conf"); we use dnsmasq but still get "Check for DNS recursion restrictions" (dnsmasq is set to only l...

I seem to have temporarily resolved this by decreasing CC_DROP_CIDR to 17 from 18 It decreased numiptent to 16K (16 makes it 15K but allows too many networks in) Maybe the container is being lied to that it is unlimited, but there is still no barrier failure count. It would be interesting if someday...

Thanks for the new csf -ra feature

However it would be nice at the end if it would confirm it is restarting LFD, and maybe even pause to watch and wait to see LFD successfully restarts and mention that too?

I've read previously here where numiptent limits have been blamed for FASTSTART failures when blocklists are downloaded/added *Error* FASTSTART: (Blocklist IPv4) [iptables-restore: line 2 failed] except my openvz contain has no limit on numiptent - what else can I check ? numiptent 18036 18036 92233...