ConfigServer Community Forum

The recently introduced check for the ModSecurity IP persistent storage size seems to have a bug.

I began getting alerts that /var/cpanel/secdatadir/ip.pag was 15GB in size, so I dutifully ran /scripts/shrink_modsec_ip_database -x to shrink the file to 37MB.

However I continue to get emails from LFD claiming that the file is over 15GB in size.

The relevant lines of csf.conf are:...

I have installed a new server with cPanel 68.0.6.

On ssh terminal I can see the csf commands, but on WHM not show Configserver Firewall

I made this configurations for at least 10 years, just on this new server the CSF Firewall not show on WHM.

Any ideas?

Hey Guys,
Have you blocked South African access to your site (configserver.com)? I cant access your site even though its up (using hideproxy.me through USA to post this).

This makes it impossible for me to open support tickets / contact you since you dont list email addresses. I cant use hideproxy.me to post support tickets - it fails. Its not only my IP because I get the same result from home....

Hi,
I have an issue with rsync overssh using csf.
With csf enable, when I do an transfert with rsync the rate is under 10MB/s
With csf disable, I have rate around 35MB/s
I open port TCP 873 in and out in csf.conf, same issue.
Someone have an idea ?
Thanks.

This is somewhat minor but on EA4 the security check says that I don't have mod_cloudflare installed but I do have it. Perhaps it's due to the name change on the module:

#$ httpd -M | grep cloudflare
AH01574: module cloudflare_module is already loaded, skipping
cloudflare_module (shared)

I'm having trouble getting the (awesome!) new Cloudflare option to work. CSF seems to be communicating with CloudFlare as I can view the Cloudflare rules for the user I have configured, but blocking based on Mod_Security hits does not seem to work at all.. Is there any more documentation that might help me with troubleshooting?

Speaking of documentation, in the CSF readme.txt, and I'm seeing the...

Check apache for mod_cloudflare in Check Server Security false reporting module not installed because module changed it's name from mod_cloudflare to cloudflare_module

# httpd -M | grep flare
cloudflare_module (shared)

I'm seeing this message DynDNS: Lookup for failed often in my lfd.log. I see the file /etc/csf/csf.dyndns has the entry _spf.google.com in it.
I've been searching here and on google to find what should be in this file. The header says only FQDN. I cannot ping this however I can get it when I do a nslookup.

#nslookup -q=TXT _spf.google.com
Server: 8.8.8.8
Address: 8.8.8.8#53

Non-authoritative...

Trying to add an include file to csf.allow.

Added the file:

[ root@cp1 csf># ls -l /etc/csf/googlebots.allow
-rw-------. 1 root root 4455 Sep 29 15:12 /etc/csf/googlebots.allow

Added the entry into csf.allow:

Include /etc/csf/googlebots.allow # Google spiders and web crawlers

Error when starting:

*Error* File does not exist: at /usr/sbin/csf line 2134.

What are we missing?

I'm having trouble with one cPanel server. I used the install script and it seems to work, but the lfd service is not created in the WHM service manager and the WHM interface page to the firewall won't let me scroll down. I've tried uninstalling and reinstalling several times, but no change. Any help is appreciated..

We disabled the firewall because CSF is blocking FTP clients listing Directorys.

hello,

We are using WHM in a Dedicated Server at Hostgator, we have 50% of our domains in Cloudflare Free Plan . the Csf is been installed, and I asked Hostgator to add the mod_cloudflare also i whitelisted the Cloudflare ip in csf.allow. (in the server check the mod_cloudflare is green and says OK the apache status)

but i'm still receiving email from lfd saying that the IP where is come from...

I installed from (last week) and enabled ConfigServer Security & Firewall (Reseller UI) from WHM (Third Party Services). I restarted cpanel but the UI is not listed on plugins list on WHM. Is there any other config I should set/enable?

I'm using WHM 66.0.18.

http urls work just fine in the csf.blocklists but not https

CentOS6 but all the proper libraries for Perl SSL have been installed

cannot assign requested address

not the normal error but a binding error for the local IP address - what would cause this?

doing a wget for the https url from the command line works just fine

so either CSF is seeing the local server IP address correctly or...

Hi everyone,

I can not connect to download.configserver.com in a new VPS in order to install csf. Is there any other mirror or how can I resolve this issue ?

so I am currently watching an IP address in the middle of a csf.deny CIDR block access the webserver

newest csf (10.24 upgraded to 10.25, no change)
restarted csf
control panel reports everything is fine

how is this even possible and where do I even begin to diagnose what has gone very wrong?

the max entries allowed for csf.deny is definitely more than what is in there, it's not being...

Will ConfigServer Firewall support Docker hosts in the future? We'd like to firewall the hosts Docker runs on and it would be cool if this is possible from within CSF.

Hi,

I have a reseller account with very limited access to WHM, however, I would like this account to be able to use the csf firewall.

I believe I have ConfigServer Security & Firewall (Reseller UI) selected in Additional Software... Third Party Services.

The reseller account can see the plug-in, but when clicking, gets the message:

You do not have access to ConfigServer Firewall.

What am I...

I have a cpanel server with a Juniper SRX 300 firewall. We block all ports other than web and email. FTP and cPanel access is whitelist only for client IPs. Since I have cphulk and a hardware firewall what extra benefit would CSF be if any? I tried CSF and it conflicts with our VPN since the Dynamic VPN feature changes IPs. Is cphulk and the hardware firewall secure? Do I lose or gain anything...