Hi,
i want to block all the ips of 124.115.*.*,
in whm "Host Access Control (block IP access) ",
how can i set it?
and how can i make sure if what firewall is installed on the server already?
thanks
Hi,
i want to block all the ips of 124.115.*.*,
in whm "Host Access Control (block IP access) ",
how can i set it?
and how can i make sure if what firewall is installed on the server already?
thanks
Hi Meeti,
Refer this link for more details on CSF [the best firewall] : http://forums.cpanel.net/showthread.php?t=53511
CSF works like a charm on all of our VPS & Dedicated servers, you get too many configuration options for setting up the firewall properly.
To block a particular IP/subnet use this command from the SSH console :iptables -I INPUT -s 124.115.0.0/16 -j DROP
Regards,
Viraj
http://www.host.co.in
DEDICATED HOSTING|WINDOWS VPS|LINUX VPS |WINDOWS HOSTING
CPANEL HOSTING|RESELLER HOSTING|SEMI-DEDICATED HOSTING
Phone:0253-2342932|Mobile:+91-9860900069
Support/Billing/Sales:24x7x365 sales@host.co.in | support@host.co.in
HI,
can i ask how can i check all the bloacked ips on the server?
thanks
Sure, run this from SSH console to check the complete firewall list :
iptables -L
Regards,
Viraj
http://www.host.co.in
DEDICATED HOSTING|WINDOWS VPS|LINUX VPS |WINDOWS HOSTING
CPANEL HOSTING|RESELLER HOSTING|SEMI-DEDICATED HOSTING
Phone:0253-2342932|Mobile:+91-9860900069
Support/Billing/Sales:24x7x365 sales@host.co.in | support@host.co.in
dear viraj,
thanks with the help.
Hello,
iptables -I INPUT -s 124.115.0.0/16 -j DROP
will block the incoming connections, to block the outgoing connections for that Ip range will be:
/sbin/iptables -A OUTPUT -d 124.115.0.0/16 -j DROP
I would also suggest you to run the command:
/sbin/iptables-save
which will save the IPtables rules in the file:
/etc/sysconfig/iptables.save
so that when the server gets rebooted next time, the kernel will load the saved Iptables configuration. Other wise after your next server reboot, this Iprange will be open on the server again.