Hello, I recently tried to install CSF in cPanel servers and cPanel DNS Only and I got the same error every time I edit the configuration file for the csf firewall and lfd:
cPanel v78.0.12
ConfigServer Security & Firewall - csf v12.09
Linux version 3.10.0-957.5.1.el7.x86_64 (mockbuild@kbuilder.bsys.centos.org) (gcc version 4.8.5 20150623 (Red Hat 4.8.5-36) (GCC) ) #1 SMP Fri Feb 1 14:54:57 UTC...
What exactly do the options for Docker do in the configuration? There is no documentation for this.
Initially they seem to work but I'm not even sure if this is CSF not working at all because once you hit csf -r it seems this breaks something on a permanent basis as you cannot start any container anymore, giving an error about iptables no chain/target by that name.
I'm missing the System Statistics I had with cPanel now that I'm using Directadmin. CSF support told me to ask here as it's a free product and they don't offer any support. Do you know how to fix this? I'm talking about the stats where you can see CPU/memory/etc.
I installed Perl modules and everything it's working correctly.
I know how to update csf the command csf -u, and also I know how to auto update CSF by modifying the config file /etc/csf/csf.conf.
But I don't want to auto update, as a server administrator, the best thing to manage system is to receive notification and manually update. So, is there any command to check if latest version is available? like csf -check_update. I want to create cronjob for this....
I installed csf & lfd, and osm on my server. I was trying to troubleshoot a spam issue (the server was sending spam), and these tools were very helpful in identifying where the issues might be. I already knew which cPanel account was responsible, and by searching the System logs in the ConfigServer Security & Firewall plugin section in the WHM, I was able to determine which scripts were likely...
We are trying to cut down on the number of emails of logs that we receive and are attempting to move everything to pipe all logs from a stack to papertrail. Is it possible to do this for the csf, lfd, cxs, rootkit logs?
Hello,
I have started receiving calls that clients websites are not accessible from countries which are not on my CC_DENY list. For example Canada. Looking through my logs I am seeing the following lines, repeated multiple times:
I am getting serious problem with UDP i am getting a lot of UDP outgoing traffic which makes my server went down and my provider won't allow these kind of traffic at all so when this happen server IP went into nulled routed which cause a lot of issue to my clients. I need your help to sort this thing out. Below you will find logs.
Hi,
recently I get emails like the following email, There are blocked UDP_OUT with different ports to some IP addresses which those are blocked
How can I trace where is the problem and which accounts do such connections?
It seems there are some scripts which try to connect to the output, but I couldn't find which accounts do this
Appreciate for any help
Hi, I make a block of /24 IP address on my server but this block still acessing my sites, I already try restart csf, apache and the problem persists, I runn csftest.pl too!
I'm not sure if anyone else is seeing the same trend, but i am noticing a massive increase in wp-login attempts lately. This is something i see in the logs of most domains across most, if not all my hosting servers. The originating countries are all over the world; USA, UK Germany Vietnam, Indonesia to Brasil.
Some domains have login attempt from a staggering 5000~6000 unique IP...
I am trying to use CT_LIMIT to block IPs connecting to my jetty server on port 8443, the connection from specific IP keep in CLOSE_WAIT status and keep opening new connections in CLOSE_WAIT, I configured CT_LIMIT=30, on port 8443 but CSF did not catch this IP and block it,
CSF test script shows Testing xt_connlimit...OK,
how can I figure why CT LIMIT is not working and how to configure it...
I am a very happy user of csf for many years on dedicated and VPS systems.
I have recently setup a dedicated server within my own network and installed csf successfully.
Problem is when I receive emails about logins or check any of the logs, it is only ever reporting the gateway internal IP address.
Scenario:
From a different physical location, using an internet connection not related to my own...
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum