ConfigServer Community Forum

Hi,

In our server firewall csf not start. Please assist with us to resolve this issue.

Also got given below error log.

==========================================
Mar 20 01:21:07 citrus lfd : *Error* You have an unresolved error when starting csf. You need to restart csf successfully before restarting lfd (see /etc/csf/csf.error). *lfd stopped*, at line 1037
Mar 20 01:21:07 citrus lfd : daemon...

Hello Guys,

I was wondering if it's possible to add an additional list of IP's in existing csf allow, ignore or block list. For example:

Include /etc/csf/office-ips

Something like that. I am not sure that these kind of configuration actually works or not. I would really appreciate it if anyone can tell me if such configuration line exists. It would be a BIG help :)

Best regards,

Abir

I have installed csf on a centOS 5.9 server which I had installed WHM/Cpanel on it before
but it shows me blank page and I can not modify it in whm
and I have lots of emails which says lfd is down.

is there any solution for thi issue?
thank you in advance

Hi,
how to solve this:

*WARNING* The MaxMind Geolite databases will soon be deprecated, disable CC_OLDGEOLITE to start using the new Geolite2 databases

can you tell me how I can fix this warning? Steps?

Thanks so much

I am having trouble getting csf.ignore to work. Have entered both ipv4 & ipv6 addresses in both files & restarted lfd & csf. There is a cron job that backs up data to this server every 4 hours and each time it sends me an email.
Have set csf.conf IGNORE_ALLOW to 1 but still same results.

Hi all,

I've discovered a strange problem with all my Debian 9.3 servers with CSF/LFD latest version. I cannot ping via IPv4. It does ping via IPv6 though. Settings are as below. I also still can't ping when both servers are in the csf.allow and csf.deny files.

ICMP_IN = 1
ICMP_IN_RATE = 1/s (also tried other variables)
ICMP_OUT = 1
ICMP_OUT_RATE = 0
IPV6_ICMP_STRICT = 0

What am I doing...

i just changed some things as per csf security checkup. After that no one is able to use things like : SitePad, let's encrypt etc.

SitePad told me to allow there IP & i did it worked fine. what feature disallow outgoing IP request & how to solve that. I am in big danger kindly help me out. :(

Greetings,

CSF is having this error when it was restarted

Another app is currently holding the xtables lock. Perhaps you want to use the -w option?
Another app is currently holding the xtables lock. Perhaps you want to use the -w option?
Another app is currently holding the xtables lock. Perhaps you want to use the -w option?
Another app is currently holding the xtables lock. Perhaps you want...

Hi guys,
I just installed csf for my ubuntu server and i think it is really big for me as csf provide a lot of settings compared to ufw.
There are several questions that i wanted to ask.
1) I dont provide dns server service and im using dynamic ip with dyn dns. Do i need to open port 53?
2) Can someone guide me or can i get a really deep guideline on how to conifgure csf from the initial.
3)...

Hi all,

Is there a log anywhere that would store information if an IP address was blocked but only temporary? Just trying to trouble issue a connection problem last night. They can now access everything again so I was just wanting to see if they were blocked by CSF on a temp basis.

Cheers,

hello -

every day or two, i gather up all the IP's from the wordpress security alert break-in attempts, then i report them at:

(example using 79.110.130.145)

then i put a six month (or 222 days) temporary block into csf.

however, the past several mornings i get a message that says:

csf: 79.110.130.145 is already temporarily blocked

i am wondering how an IP number that is temporarily...

hello -

i tried putting 50.18.190.80 into my firewall deny IP list, yet this IP is not being blocked. using browserstack.com, i am still able to pull up this page.

i first checked the IP number in question using which gave me 50.18.190.80

that same IP number was first put into temporarily allow/deny and blocked for 600 seconds, but again the IP is still able

any suggestions what i might be...

I'm have a problem with CSF over access to emails.

The client IP is in csf.allow but even so the client it is being temporarily blocked only to email access.

In other words, even the client ip being in csf.allow the client is being blocked temporarily.

I try to release the IP again but it does not appear as blocked, it seems to be only a temporary block.

The client accesses the site and...

I just got 14 messages all stating that my account logged onto root. But that wasn't me. I quickly logged on and checked and see no evidence of any root logins.

Suspecting that these might be older messages just now coming in (from previous days) I checked the email headers and they show that they came in just a minute ago. The /var/log/exim_mainlog also shows that the messages were just sent....

Hello

In a VPS with Ubuntu 16 & CSF that uses /etc/apache2/sites-enable (etc) and the vhosts......
There is a lot of webpages with user and password fields to use services like:
roundcube
phpmyadmin
and webpages that has login for users to post documents etc....
How is possible to have CSF monitoring those login pages and block ips after X tries?
Best Regards

I just notice i have an error when try to start CSF.

Here output.

ACCEPT all opt -- in eth1 out * 0.0.0.0/0 -> 0.0.0.0/0
ACCEPT all opt -- in * out eth1 0.0.0.0/0 -> 0.0.0.0/0
ACCEPT all opt in eth1 out * ::/0 -> ::/0
ACCEPT all opt in * out eth1 ::/0 -> ::/0
*ERROR* line:
Command:
Error:
You should check through the main output carefully

*ERROR* line:
Command:
Error:
You should check...

Hi all,

I have a Debian 9 server with all the latest patches and CSF/LFD the latest version. Just a standard configuration with one IP number, no crazy things.

I want to automatically block IPs when they try to break in. I thought CSF/LFD did out of the box, but still I wake up with 600 of the below alert mails:

Feb 6 05:32:48 mail02 postfix/submission/smtpd : warning:...

HI all ,
I get this error today and don't know how to fix it , is there anybody who is in that trouble before , please help .

Error: FASTSTART: (CC_DENY IPv4) [] . Try restarting csf with FASTSTART disabled, at line 5311 in /usr/sbin/csf

Dear all,

I just setup CSF.

My home network works within 192.168.178.0/24 .
My plan was to only (mainly) allow internal connections to and from the server on which CSF has been installed.

Therefore I started with adding 102.168.178.0/24 to csf.allow:
###############################################################################
# Copyright 2006-2017, Way to the Web Limited
# URL:
# Email:...

hello, I keep geeting this email

Time: Thu Feb 8 04:45:17 2018 +0100
Account: admin
Resource: Virtual Memory Size
Exceeded: 544 > 512 (MB)
Executable: /opt/cpanel/ea-php70/root/usr/bin/php-cgi
Command Line: /opt/cpanel/ea-php70/root/usr/bin/php-cgi
PID: 17354 (Parent PID:14362)
Killed: No

I understand that i receive this email when someone is online for a long time but i keep getting...