firewall

  1. C

    SOLVED [CPANEL-28146] iptables rules automatically overwritten

    Hey there, we caught this new iptables chain (cP-Firewall-1-INPUT) that was added last night, opening us up to the internet via WHM interface, SSH, etc. Checked lastlog, bash histories, etc., but am seeing no sign of anyone changing it through a specified command. None of our administrators...
  2. J

    SOLVED iptables -L invdrop

    Cpanel 11.80.0.15 on Centos 7. I am seeing the following errors when doing iptables -L INVDROP all -- anywhere anywhere ctstate INVALID INVDROP tcp -- anywhere anywhere tcp flags:FIN,SYN,RST,PSH,ACK,URG/NONE INVDROP tcp --...
  3. D

    Blocking IPs by Country?

    Hello, How do I block my site: - Removed - for IP's like those in china? As some countries (china, russia) attack much the sites BR I wanted to block these countries. I have in my firewall more than 2,000 IP's, however, I still would like to do the block by country. Does anyone have a tip in...
  4. M

    Can I block port 21?

    Hello to all, i would like to ask if i will be able to block FTP 21 port. Is something that i should be aware of? I am currently use SFTP with a custom port so i don't use 21 port or share it with anyone else. I could simply block the incoming/out coming port from firewall or should i consider...
  5. P

    SOLVED Open port 3306 (without CSF)

    I'm trying to connect remotely to my MySQL database, but port 3306 is closed (telnet can't connect). I guess it has something to do with the fact that I used to have CSF, but that isn't installed anymore (since months/years). Obviously I can't modify its configuration / settings. So installing...
  6. T

    Configuring Firewall Rules for cPanel?

    Good morning cPanel and Google Cloud Platform users, This is how I have configured firewall rules for cPanel and WHM in Google Cloud Platform VPC network. Please refer to the following 2 screenshots. i.imgur.com/Ilmc6wL.png i.imgur.com/2SRTaRV.png
  7. F

    PHP function fwrite() problem

    Hello, I have problem with use php function fwrite(). I have php server status script which use fsocket fwrite and some other functions. Installed CMS is php-fusion. All servers shows offline but when i disable firewall servers show Online. I have CSF firewall how i can configure it to all...
  8. C

    Firewalls keep getting turned off

    Hi I'm new to this forum so hope i'm posting in the right place. I have a dedicated server with WHM and all accounts have cpanel. It is managed hosting. Lately I have found that a number of accounts have experienced high level of email spam and noticed that cphulk, csf firewalls and spamassassin...
  9. L

    Firewall Exceptions For cPanel Server

    Hi all I'm kind of struggling with setting up my cPanel server due to our strict network security standards. We currently have a live website that is hosted on cPanel and we occasionally run into problems due to our network firewall blocking some of the traffic. I have raised several tickets...
  10. PeteS

    FirewallD setup questions

    I may be totally misunderstanding thins, but... How to Configure Your Firewall for cPanel Services - cPanel Knowledge Base - cPanel Documentation says: Run the yum install firewalld command to ensure that your system has firewalld installed. Run the systemctl start firewalld.service command...
  11. M

    Problem with incoming e-mails because of firewall

    Hi, I am doing my iptables to set up and have the following problem. Since I lock the incoming ports and unblock individually and the outgoing ports have completely shared, the emails go out but not pure! I found no port to put the e-mail traffic again normal. If I allow the firewall everything...
  12. Harlequin

    Country Level Blocking

    I've been using Security & Firewall - csf v10.05 to block users and it's working well but it's also blocking genuine users from accessing the websites. Is it possible somehow to ONLY block access to the WHM login but allow users to browse the sites on the server...?
  13. R

    Change mail IP and close ports

    Hello. I was wondering if and how it is possible to remove/disable/close specific ports on IP. I have VPS running CentOS and the server has 2 IP's. 1st one is the main IP used by web server, ftp server & ssh. I changed mail server (Exim) IP address to 2nd IP. Currently if I scan my secondary...
  14. M

    SOLVED WHM won't load but SSH/Cpanel/WWW all work

    Been a cPanel user for a long time but just installed an instance in Azure. Having some trouble getting things to work properly. Yesterday it seemed I got locked out because of cphulk, getting spammed root attempts. Tried following some documentation to disable cphulk and later in the day...
  15. Rodrigo Gomes

    Prevent abuse of outgoing traffic for ports 80 and 443

    I've created the rule below to protect against abuse on outbound traffic. But I wonder if this rule will not break the cpanel in any way? /sbin/iptables -N OUT_DOS_ATTACK /sbin/iptables -A OUTPUT -p tcp -m multiport --dport 80,443 --syn -m connlimit --connlimit-above 50 -j OUT_DOS_ATTACK...
  16. keat63

    Closing smtp ports question

    I'm fed up of checking my logs daily to find brute force login attempts on emails, some times as many as 50 over night. So in CSF I closed ports 110,143,220,465,587,993,995 to all but my home country code. Either this is working to a point, or the hackers got bored and moved on. However, if it...
  17. M

    Open port 3306 on the server

    I'm going to open port 3306 if you would instruct the server Hetzner I Plums in port csf but signals an error Signals an error please guide me
  18. F

    SOLVED Added second account/domain => ip unreachable

    I have my main site hosted on a VPS through WHM/Cpanel. I wanted to add a second website to my VPS. So I simply created a new cpanel account/domain with in WHM. After doing that my whole server seems to have crashed. I can't reach: http or ftp. I only have ssh acces. The host doesn't know...
  19. M

    Saved iptables rules not found

    Hi, I am trying to block a particular IP accessing my server via iptables as "iptables -I INPUT -s x.x.x.x -j DROP" Then saved iptables by "service iptables save" and restarted "service iptables restart" When I checked the saved rules after some time by this command "iptables -L -n | grep...
  20. sahostking

    SOLVED Any issues if I block port 23

    Noticing tons of blocks with CSF on to port 23. That I assume is telnet port. Would anything break in cpanel if I blocked port 23? I assume its not required really?