firewall

Hey there, we caught this new iptables chain (cP-Firewall-1-INPUT) that was added last night, opening us up to the internet via WHM interface, SSH, etc. Checked lastlog, bash histories, etc., but am seeing no sign of anyone changing it through a specified command. None of our administrators...

Cpanel 11.80.0.15 on Centos 7. I am seeing the following errors when doing iptables -L INVDROP all -- anywhere anywhere ctstate INVALID INVDROP tcp -- anywhere anywhere tcp flags:FIN,SYN,RST,PSH,ACK,URG/NONE INVDROP tcp --...

Hello, How do I block my site: - Removed - for IP's like those in china? As some countries (china, russia) attack much the sites BR I wanted to block these countries. I have in my firewall more than 2,000 IP's, however, I still would like to do the block by country. Does anyone have a tip in...

Hello to all, i would like to ask if i will be able to block FTP 21 port. Is something that i should be aware of? I am currently use SFTP with a custom port so i don't use 21 port or share it with anyone else. I could simply block the incoming/out coming port from firewall or should i consider...

I'm trying to connect remotely to my MySQL database, but port 3306 is closed (telnet can't connect). I guess it has something to do with the fact that I used to have CSF, but that isn't installed anymore (since months/years). Obviously I can't modify its configuration / settings. So installing...

Good morning cPanel and Google Cloud Platform users, This is how I have configured firewall rules for cPanel and WHM in Google Cloud Platform VPC network. Please refer to the following 2 screenshots. i.imgur.com/Ilmc6wL.png i.imgur.com/2SRTaRV.png

Hello, I have problem with use php function fwrite(). I have php server status script which use fsocket fwrite and some other functions. Installed CMS is php-fusion. All servers shows offline but when i disable firewall servers show Online. I have CSF firewall how i can configure it to all...

Hi I'm new to this forum so hope i'm posting in the right place. I have a dedicated server with WHM and all accounts have cpanel. It is managed hosting. Lately I have found that a number of accounts have experienced high level of email spam and noticed that cphulk, csf firewalls and spamassassin...

Hi all I'm kind of struggling with setting up my cPanel server due to our strict network security standards. We currently have a live website that is hosted on cPanel and we occasionally run into problems due to our network firewall blocking some of the traffic. I have raised several tickets...

I may be totally misunderstanding thins, but... How to Configure Your Firewall for cPanel Services - cPanel Knowledge Base - cPanel Documentation says: Run the yum install firewalld command to ensure that your system has firewalld installed. Run the systemctl start firewalld.service command...

Hi, I am doing my iptables to set up and have the following problem. Since I lock the incoming ports and unblock individually and the outgoing ports have completely shared, the emails go out but not pure! I found no port to put the e-mail traffic again normal. If I allow the firewall everything...

I've been using Security & Firewall - csf v10.05 to block users and it's working well but it's also blocking genuine users from accessing the websites. Is it possible somehow to ONLY block access to the WHM login but allow users to browse the sites on the server...?

Hello. I was wondering if and how it is possible to remove/disable/close specific ports on IP. I have VPS running CentOS and the server has 2 IP's. 1st one is the main IP used by web server, ftp server & ssh. I changed mail server (Exim) IP address to 2nd IP. Currently if I scan my secondary...

Been a cPanel user for a long time but just installed an instance in Azure. Having some trouble getting things to work properly. Yesterday it seemed I got locked out because of cphulk, getting spammed root attempts. Tried following some documentation to disable cphulk and later in the day...

I've created the rule below to protect against abuse on outbound traffic. But I wonder if this rule will not break the cpanel in any way? /sbin/iptables -N OUT_DOS_ATTACK /sbin/iptables -A OUTPUT -p tcp -m multiport --dport 80,443 --syn -m connlimit --connlimit-above 50 -j OUT_DOS_ATTACK...

I'm fed up of checking my logs daily to find brute force login attempts on emails, some times as many as 50 over night. So in CSF I closed ports 110,143,220,465,587,993,995 to all but my home country code. Either this is working to a point, or the hackers got bored and moved on. However, if it...

I'm going to open port 3306 if you would instruct the server Hetzner I Plums in port csf but signals an error Signals an error please guide me

I have my main site hosted on a VPS through WHM/Cpanel. I wanted to add a second website to my VPS. So I simply created a new cpanel account/domain with in WHM. After doing that my whole server seems to have crashed. I can't reach: http or ftp. I only have ssh acces. The host doesn't know...

Hi, I am trying to block a particular IP accessing my server via iptables as "iptables -I INPUT -s x.x.x.x -j DROP" Then saved iptables by "service iptables save" and restarted "service iptables restart" When I checked the saved rules after some time by this command "iptables -L -n | grep...

Noticing tons of blocks with CSF on to port 23. That I assume is telnet port. Would anything break in cpanel if I blocked port 23? I assume its not required really?