Host Access Control (block IP access)

[meeti]

Hi,


i want to block all the ips of 124.115.*.*,


in whm "Host Access Control (block IP access) ",


how can i set it?



and how can i make sure if what firewall is installed on the server already?



thanks

[viraj]

Hi Meeti,

Refer this link for more details on CSF [the best firewall] : ConfigServer Security & Firewall Released

CSF works like a charm on all of our VPS & Dedicated servers, you get too many configuration options for setting up the firewall properly.

To block a particular IP/subnet use this command from the SSH console :

Quote:

iptables -I INPUT -s 124.115.0.0/16 -j DROP

[meeti]

HI,

can i ask how can i check all the bloacked ips on the server?



thanks

[viraj]

Sure, run this from SSH console to check the complete firewall list :

Quote:

iptables -L

[meeti]

dear viraj,


thanks with the help.

[apscinsspl]

Hello,

iptables -I INPUT -s 124.115.0.0/16 -j DROP

will block the incoming connections, to block the outgoing connections for that Ip range will be:

/sbin/iptables -A OUTPUT -d 124.115.0.0/16 -j DROP

I would also suggest you to run the command:

/sbin/iptables-save

which will save the IPtables rules in the file:

/etc/sysconfig/iptables.save

so that when the server gets rebooted next time, the kernel will load the saved Iptables configuration. Other wise after your next server reboot, this Iprange will be open on the server again.