SOLVED Best practices for blocking 404 code abusers?

jeffschips

Well-Known Member
Jun 5, 2016
158
13
18
new york
cPanel Access Level
Root Administrator
I have a cpanel instance on Centos:

CENTOS 7.6 kvm [buckets] v80.0.18

mod_security running along with csf firewall.

and I'm receiving a lot of 404 errors in logs oftentimes from the same offending ip address although it changes enough so that I can't block the entire range.

What is the best practice to deny these abusers?

In config firewall I see an entry for CT (connection tracking) but that does not seem to distinguish 404 from other types of irrelevant connections. I'm mostly interested in those requests that are producing 404 errors.

Any suggestions?