Host Access Control (block IP access)

**meeti** · 05-12-2008 03:54 PM

Hi,

i want to block all the ips of 124.115.*.*,

in whm "Host Access Control (block IP access) ",

how can i set it?

and how can i make sure if what firewall is installed on the server already?

thanks

**viraj** · 05-12-2008 07:01 PM

Hi Meeti,

Refer this link for more details on CSF [the best firewall] : http://forums.cpanel.net/showthread.php?t=53511

CSF works like a charm on all of our VPS & Dedicated servers, you get too many configuration options for setting up the firewall properly.

To block a particular IP/subnet use this command from the SSH console :

iptables -I INPUT -s 124.115.0.0/16 -j DROP

**meeti** · 05-12-2008 09:20 PM

HI,

can i ask how can i check all the bloacked ips on the server?

thanks

**viraj** · 05-13-2008 12:13 AM

Sure, run this from SSH console to check the complete firewall list :

iptables -L

**meeti** · 05-13-2008 12:23 AM

dear viraj,

thanks with the help.

**apscinsspl** · 05-13-2008 01:39 AM

Hello,

iptables -I INPUT -s 124.115.0.0/16 -j DROP

will block the incoming connections, to block the outgoing connections for that Ip range will be:

/sbin/iptables -A OUTPUT -d 124.115.0.0/16 -j DROP

I would also suggest you to run the command:

/sbin/iptables-save

which will save the IPtables rules in the file:

/etc/sysconfig/iptables.save

so that when the server gets rebooted next time, the kernel will load the saved Iptables configuration. Other wise after your next server reboot, this Iprange will be open on the server again.

LinkBack

Thread Tools

Host Access Control (block IP access)

Host Access Control

How to restrict ftp access to certain ips? (Host Access Control) is not working. Bug?

Host Access Control not working

host access control

host access control