Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Anti flood protection?

Discussion in 'Security' started by Scott Galambos, Jun 29, 2018.

  1. Scott Galambos

    Scott Galambos Active Member

    Joined:
    Jul 13, 2016
    Messages:
    42
    Likes Received:
    1
    Trophy Points:
    8
    Location:
    Canada
    cPanel Access Level:
    Root Administrator
    How do I make my cPanel v70.0.48 server block and IP that is connected more then say 50 times to all ports? I keep getting flooded by these bots scanning for Wordpress holes. A fancy netstat command I have will show the count of the connections. eg.
    42.234.2.4 = 85
    etc.

    I simply want to automatically csf deny when an IP is greater then like 75. I would need a whitelist too though. Does anything like this exist?
     
  2. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    16,513
    Likes Received:
    424
    Trophy Points:
    583
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    Yes, in CSF. There are built in options for port scanning. ;)
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  3. Scott Galambos

    Scott Galambos Active Member

    Joined:
    Jul 13, 2016
    Messages:
    42
    Likes Received:
    1
    Trophy Points:
    8
    Location:
    Canada
    cPanel Access Level:
    Root Administrator
    Is this the CONNLIMIT = "" setting in csf.conf? It not necessarily port scanning I'm trying to stop, its many hits to URLs on WP sites I'm trying to mitigate. So all connections are for port 80. If I do CONNLIMIT = "40" does that mean any single IP cannot connect more then 40 times to port 80/443?
     
  4. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    16,513
    Likes Received:
    424
    Trophy Points:
    583
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    I can't explain CSF any better than the readme can:
    https://download.configserver.com/csf/readme.txt

     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
Loading...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice