Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Country Level Blocking

Discussion in 'Security' started by Harlequin, Apr 9, 2017.

Tags:
  1. Harlequin

    Harlequin Well-Known Member

    Joined:
    Sep 4, 2011
    Messages:
    45
    Likes Received:
    1
    Trophy Points:
    58
    Location:
    Santa Cruz de Tenerife, Spain
    cPanel Access Level:
    Root Administrator
    Twitter:
    I've been using Security & Firewall - csf v10.05 to block users and it's working well but it's also blocking genuine users from accessing the websites.

    Is it possible somehow to ONLY block access to the WHM login but allow users to browse the sites on the server...?
     
    #1 Harlequin, Apr 9, 2017
  2. SysSachin

    SysSachin Well-Known Member

    Joined:
    Aug 23, 2015
    Messages:
    604
    Likes Received:
    43
    Trophy Points:
    28
    Location:
    India
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hello,

    You have to set allow/deny WHM access through Host Access Control area

    Login to WHM >> Host Access Control area

    whostmgrd YourIP allow
    whostmgrd all deny


    The allow line(s) must be above the deny ones or else you will block yourself out of WHM on the machine and need to edit /etc/hosts.allow in root SSH to unlock WHM

    Please refer documents for more information.
    Host Access Control - Documentation - cPanel Documentation
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #2 SysSachin, Apr 9, 2017
  3. Harlequin

    Harlequin Well-Known Member

    Joined:
    Sep 4, 2011
    Messages:
    45
    Likes Received:
    1
    Trophy Points:
    58
    Location:
    Santa Cruz de Tenerife, Spain
    cPanel Access Level:
    Root Administrator
    Twitter:
    Thanks

    Given that my IP can change that doesn't sound like the best solution as I could in theory end up locking myself out of my own server.

    Will it allow for wildcards...? "1.2.%" for example...?
     
    #3 Harlequin, Apr 10, 2017
  4. cPanelMichael

    cPanelMichael Technical Support Community Manager
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    45,411
    Likes Received:
    1,956
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hello,

    If you prefer to use the Host Access Control option in Web Host Manager, then you could add a netmask to allow from specific IP ranges. For example, 192.168.0.0/255.255.255.0, where 255.255.255.0 is the desired network mask you want to use. This is documented at:

    Host Access Control - Documentation - cPanel Documentation

    Thank you.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #4 cPanelMichael, Apr 10, 2017
  5. Harlequin

    Harlequin Well-Known Member

    Joined:
    Sep 4, 2011
    Messages:
    45
    Likes Received:
    1
    Trophy Points:
    58
    Location:
    Santa Cruz de Tenerife, Spain
    cPanel Access Level:
    Root Administrator
    Twitter:
    I've added 2 step authentication and it's working perfectly fine. However, I still get the LFD failures. For example:

    Time: Tue Apr 11 18:46:34 2017 +0100
    IP: 81.199.16.113 (UG/Uganda/81.199.16.113.satcom-systems.net)
    Failures: 5 (sshd)
    Interval: 3600 seconds
    Blocked: Permanent Block

    Log entries:

    Apr 11 18:46:23 serv sshd[23741]: Invalid user admin from 81.199.16.113
    Apr 11 18:46:23 serv sshd[23741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.199.16.113
    Apr 11 18:46:25 serv sshd[23741]: Failed password for invalid user admin from 81.199.16.113 port 3561 ssh2
    Apr 11 18:46:28 serv sshd[23741]: Failed password for invalid user admin from 81.199.16.113 port 3561 ssh2
    Apr 11 18:46:30 serv sshd[23741]: Failed password for invalid user admin from 81.199.16.113 port 3561 ssh2
     
    #5 Harlequin, Apr 11, 2017
  6. cPanelMichael

    cPanelMichael Technical Support Community Manager
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    45,411
    Likes Received:
    1,956
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Twitter:
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #6 cPanelMichael, Apr 11, 2017
(You must log in or sign up to post here.)
Loading...
Similar Threads - Country Level Blocking
  1. PatrickVeenstra

    Login Denied Country is Blacklisted?

    PatrickVeenstra, Aug 29, 2018, in forum: Security
    Replies:
    12
    Views:
    457
    cPanelMichael
    Nov 26, 2018
  2. willke

    SOLVED Configserver deny listing IPs blacklisted by cPHulk Country blocks?

    willke, May 22, 2018, in forum: Security
    Replies:
    4
    Views:
    331
    cPanelMichael
    Oct 23, 2018
  3. PatrickVeenstra

    cPHulk Country Management - EU Question

    PatrickVeenstra, May 19, 2018, in forum: Security
    Replies:
    3
    Views:
    130
    cPanelLauren
    May 21, 2018
  4. dcusimano

    SOLVED Add country to cPHulk History Reports

    dcusimano, May 14, 2018, in forum: Security
    Replies:
    2
    Views:
    155
    cPanelMichael
    May 16, 2018
  5. NotNulled

    SOLVED cphulk country whitelist using cli?

    NotNulled, May 14, 2018, in forum: Security
    Replies:
    1
    Views:
    170
    cPanelMichael
    May 15, 2018

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice