DNS Only server conflicts with CSF?

D

designmania

Member
Nov 10, 2011
12
0
51
cPanel Access Level
Root Administrator
Hi,

I recently installed the cPanel DNS Only. I have 2 other WHM servers clustered with this DNS server.

I also installed the CSF on these 2 WHM servers, but not on the DNS server. Whenever I enable the CSF on each of the server, it blocks everyone from accessing to my website...

So, I think the problem might be causing from the way I installed the CSF. Should I install the CSF on DNS server, on 3 of them, or....? :confused:

Thank you very much for your help!
 
cPanelTristan

cPanelTristan

Quality Assurance Analyst
Staff member
Oct 2, 2010
7,607
44
348
somewhere over the rainbow
cPanel Access Level
Root Administrator
Please ensure to whitelist the IP for the DNS only machine on both of the machines with CSF for incoming and outgoing connections. If that still doesn't work, could you check that ports 53 and 953 are both opened in the firewall? You'd check the ports listed in WHM > Plugins > ConfigServer Security&Firewall > Firewall configuration location.
 
D

designmania

Member
Nov 10, 2011
12
0
51
cPanel Access Level
Root Administrator
Hi Trista,

It works when the first time I added 953 to TCP/UDP-IN/OUT. However, when I made other changes and restart the CSF, it stopped working. The websites are being blocked again. So, I am kind of afraid of making change to another server. It seems like CSF just ignore the changes I have made previously.
 
cPanelTristan

cPanelTristan

Quality Assurance Analyst
Staff member
Oct 2, 2010
7,607
44
348
somewhere over the rainbow
cPanel Access Level
Root Administrator
You might want to post on their forum to see if they have further ideas, since that is a 3rd party product by another company:

CSF Forum
 
brianoz

brianoz

Well-Known Member
Mar 13, 2004
1,146
7
168
Melbourne, Australia
cPanel Access Level
Root Administrator
You should definitely install CSF on all your servers, there must be something happening and it's a matter of tracking it down and fixing it.

Specifically what is happening? Is it a failure to resolve in DNS or is it failing to access port 80? Are there any blocks being generated on the servers, and if so, what is the reason for those blocks? Check in /var/log/lfd.log on all servers for blocks against the other servers.
 
S

storminternet

Well-Known Member
Nov 2, 2011
460
0
66
cPanel Access Level
Root Administrator
Hi,

Sometimes csf do not work properly if all the iptables modules are not installed on server. Check this with the lsmod command to see list of iptables modules installed on server. You may need to install additional modules with the modprob if necessary.
 
Last edited:
You must log in or register to reply here.
Thread starter Similar threads Forum Replies Date
C AutoSSL failing for domains with external DNS but hosted and resolving to cpanel server Security 5
vicos AutoSSL: WARN Local HTTP DCV error" -- Using my own DNS Server and we don't want those cPanel subdomains defined. Workaround? Security 10
keencs SSL for DNSOnly Server Failing Security 8
F LetsEncrypt Wildcard DNS verification when not using cPanel's name servers Security 7
I SOLVED [CPANEL-30418] SSL for DNSOnly Server Security 38
Similar threads
AutoSSL failing for domains with external DNS but hosted and resolving to cpanel server
AutoSSL: WARN Local HTTP DCV error" -- Using my own DNS Server and we don't want those cPanel subdomains defined. Workaround?
SSL for DNSOnly Server Failing
LetsEncrypt Wildcard DNS verification when not using cPanel's name servers
SOLVED [CPANEL-30418] SSL for DNSOnly Server
Top Bottom