Do I have the correct s/d for csf.allow?

2 posts Page 1 of 1
Junior Member
Posts: 9
Joined: 18 Jul 2015, 11:46


I have 2 IPs on my server running Ubuntu 18.04 LTS for this post I will call the IPs and

I would like to have use for TeamSpeak 3 and need to option some TCP and UDP ports for it to all work.
I read I can open the ports using csf.allow but not sure how to allow the IP only to thoses ports

These are the ports I need to open only for the IP
TCP In: 2008,10011,30033,41144
TCP Out: 2008,10011,30033,41144
UDP In: 9987
UDP Out: 2011:2110

Now here the bit I get lost with the s/d for the port and ip.
Have I got the below correct?



Junior Member
Posts: 2
Joined: 14 May 2019, 23:57

The advanced format is for blocking the IP only from a certain port. Normal format is to just have the IP in csf.deny which blocks it from the server entirely.
The same advanced syntax can be used to open specific ports for certain IP addresses as well. Adding an IP to csf.allow normally opens all ports to that IP address. Adding an IP to csf.ignore simply allows the IP to be ignored from brute force detection (LFD) without opening up the extra ports.
2 posts Page 1 of 1