The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

CSF blocks all my own websites hosted on the server

Discussion in 'Security' started by komalselva, Aug 10, 2012.

  1. komalselva

    komalselva Member

    Joined:
    Dec 17, 2010
    Messages:
    7
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    Komal
    Hi,

    I recently installed CSF in my VPS but it blocks all websites hosted on the server. (i tried from several locations)
    All the sites works fine if i disable the CSF.

    Please help me

    here is the list of ports enabled in CSF

    # Allow incoming TCP ports
    TCP_IN = 20,21,22,25,53,80,110,143,443,465,587,993,995,2077,2078,2082,2083,2086,2087,2095,2096
    # Allow outgoing TCP ports
    TCP_OUT = 20,21,22,25,37,43,53,80,110,113,443,587,873,2087,2089,2703
     
  2. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    14,471
    Likes Received:
    199
    Trophy Points:
    63
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    What do you mean by blocks all websites? Websites are served up on port 80, that port is in your list here. Have you gotten emails from CSF stating why someone got blocked? Any error messages in your log?
     
  3. komalselva

    komalselva Member

    Joined:
    Dec 17, 2010
    Messages:
    7
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    Komal
    Blocks all websites means my websites are not resolving from any part of the world if CSF is enabled
    csf.deny contains no ip so it is because of blocking of ips


    Displaying the last 30 lines of /var/log/lfd.log...

    Code:
    Aug 10 07:55:12 V-5239 lfd[32206]: Account Tracking...
    Aug 10 07:55:12 V-5239 lfd[32206]: SSH Tracking...
    Aug 10 07:55:12 V-5239 lfd[32206]: SU Tracking...
    Aug 10 07:55:12 V-5239 lfd[32206]: Console Tracking...
    Aug 10 07:55:12 V-5239 lfd[32206]: WHM Tracking...
    Aug 10 07:55:12 V-5239 lfd[32206]: Watching /var/log/maillog...
    Aug 10 07:55:12 V-5239 lfd[32206]: Watching /var/log/exim_mainlog...
    Aug 10 07:55:12 V-5239 lfd[32206]: Watching /var/log/messages...
    Aug 10 07:55:12 V-5239 lfd[32206]: Watching /var/log/secure...
    Aug 10 07:55:12 V-5239 lfd[32206]: Watching /usr/local/cpanel/logs/login_log...
    Aug 10 07:55:12 V-5239 lfd[32206]: Watching /usr/local/apache/logs/error_log...
    Aug 10 07:55:12 V-5239 lfd[32206]: Watching /usr/local/cpanel/logs/access_log...
    Aug 10 07:55:17 V-5239 lfd[32262]: *WHM/cPanel root access* from 59.92.35.68
    Aug 10 07:58:21 V-5239 lfd[32210]: CCL Error: Unable to retrieve GeoLite Country database [http://geolite.maxmind.com/download/.../GeoIP.dat.gz] - Unable to download: Can't connect to geolite.maxmind.com:80 (Connection timed out)
    Aug 10 08:55:12 V-5239 lfd[1196]: CCL: Retrieving GeoLite Country database [http://geolite.maxmind.com/download/.../GeoIP.dat.gz]
    Aug 10 08:58:21 V-5239 lfd[1196]: CCL Error: Unable to retrieve GeoLite Country database [http://geolite.maxmind.com/download/.../GeoIP.dat.gz] - Unable to download: Can't connect to geolite.maxmind.com:80 (Connection timed out)
    Aug 10 09:22:04 V-5239 lfd[1542]: *SSH login* from 59.92.35.68 into the root account using password authentication
    Aug 10 09:32:43 V-5239 lfd[1710]: *WHM/cPanel root access* from 59.92.35.68
    Aug 10 09:55:12 V-5239 lfd[3231]: CCL: Retrieving GeoLite Country database [http://geolite.maxmind.com/download/.../GeoIP.dat.gz]
    Aug 10 09:58:21 V-5239 lfd[3231]: CCL Error: Unable to retrieve GeoLite Country database [http://geolite.maxmind.com/download/.../GeoIP.dat.gz] - Unable to download: Can't connect to geolite.maxmind.com:80 (Connection timed out)
    Aug 10 10:55:14 V-5239 lfd[5258]: CCL: Retrieving GeoLite Country database [http://geolite.maxmind.com/download/.../GeoIP.dat.gz]
    Aug 10 10:58:23 V-5239 lfd[5258]: CCL Error: Unable to retrieve GeoLite Country database [http://geolite.maxmind.com/download/.../GeoIP.dat.gz] - Unable to download: Can't connect to geolite.maxmind.com:80 (Connection timed out)
    Aug 10 11:55:15 V-5239 lfd[5969]: CCL: Retrieving GeoLite Country database [http://geolite.maxmind.com/download/.../GeoIP.dat.gz]
    Aug 10 11:58:24 V-5239 lfd[5969]: CCL Error: Unable to retrieve GeoLite Country database [http://geolite.maxmind.com/download/.../GeoIP.dat.gz] - Unable to download: Can't connect to geolite.maxmind.com:80 (Connection timed out)
    Aug 10 12:31:34 V-5239 lfd[7440]: *WHM/cPanel root access* from 59.92.35.68
    Aug 10 12:55:17 V-5239 lfd[7741]: CCL: Retrieving GeoLite Country database [http://geolite.maxmind.com/download/.../GeoIP.dat.gz]
    Aug 10 12:58:26 V-5239 lfd[7741]: CCL Error: Unable to retrieve GeoLite Country database [http://geolite.maxmind.com/download/.../GeoIP.dat.gz] - Unable to download: Can't connect to geolite.maxmind.com:80 (Connection timed out)
    Aug 10 13:55:17 V-5239 lfd[9473]: CCL: Retrieving GeoLite Country database [http://geolite.maxmind.com/download/.../GeoIP.dat.gz]
    Aug 10 13:58:26 V-5239 lfd[9473]: CCL Error: Unable to retrieve GeoLite Country database [http://geolite.maxmind.com/download/.../GeoIP.dat.gz] - Unable to download: Can't connect to geolite.maxmind.com:80 (Connection timed out)
    Aug 10 14:16:39 V-5239 lfd[9752]: *WHM/cPanel root access* from 59.92.35.68 
     
  4. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    14,471
    Likes Received:
    199
    Trophy Points:
    63
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    This thread should be helpful for the error.
    ConfigServer Scripts Forum

    Sounds to me like you've got something configured incorrectly. You might want to post on the CSF forums for assistance.
     
    #4 Infopro, Aug 10, 2012
    Last edited: Feb 5, 2014
  5. ThoughtwireHost

    ThoughtwireHost Registered

    Joined:
    Feb 5, 2014
    Messages:
    1
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Reseller Owner
    Since this thread was found looking on Google; the link posted by Infopro is no longer valid.
     
  6. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    14,471
    Likes Received:
    199
    Trophy Points:
    63
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    It seems those forums were cleaned up or reorganized a bit. Can't be helped. Regardless, this is a ConfigServer script question and would be best posted to the ConfigServer forums.
     
  7. dualmonitor

    dualmonitor Active Member

    Joined:
    Dec 3, 2012
    Messages:
    31
    Likes Received:
    0
    Trophy Points:
    6
    cPanel Access Level:
    Root Administrator
    Just an FYI for others who may stumble across this thread.

    I have an application running on a cpanel account that connects to MaxMind's api at geoip.maxmind.com:80 . I recently installed CSF and it appears it's caused the application to break. The error I'm getting in the browser is:

    Warning: fsockopen(): unable to connect to geoip.maxmind.com:80 (Connection timed out) in... (path to filename)


    CSF isn't new to errors when connecting to maxmind geolocation services. I see these relatively recent threads:

    ConfigServer Community Forum • View topic - CSF Timeout when retrieving GeoIP information

    ConfigServer Community Forum • View topic - sever not accepting connexon !!!

    ConfigServer Community Forum • View topic - WGET blocked
     
Loading...

Share This Page