I have a cpanel instance on Centos:
CENTOS 7.6 kvm [buckets] v80.0.18
mod_security running along with csf firewall.
and I'm receiving a lot of 404 errors in logs oftentimes from the same offending ip address although it changes enough so that I can't block the entire range.
What is the best practice to deny these abusers?
In config firewall I see an entry for CT (connection tracking) but that does not seem to distinguish 404 from other types of irrelevant connections. I'm mostly interested in those requests that are producing 404 errors.
Any suggestions?
CENTOS 7.6 kvm [buckets] v80.0.18
mod_security running along with csf firewall.
and I'm receiving a lot of 404 errors in logs oftentimes from the same offending ip address although it changes enough so that I can't block the entire range.
What is the best practice to deny these abusers?
In config firewall I see an entry for CT (connection tracking) but that does not seem to distinguish 404 from other types of irrelevant connections. I'm mostly interested in those requests that are producing 404 errors.
Any suggestions?
