The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

How to Check Firewall Logs for details

Discussion in 'Security' started by sammiller, Apr 12, 2013.

  1. sammiller

    sammiller Registered

    Joined:
    Apr 12, 2013
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Website Owner
    I am trying to figure out how to see what is happening for a user on my server. They keep getting blocked from failed POP3 connections and we cant figure out why. The log below is all I can find that indicates what is happening.

    My question is: Are there any other places within WHM to find log details for IP bans? I would like to find out which email address is trying to connect or any other information that I can use to try to solve the issue. Thank you for your help in advance.
     
  2. kdean

    kdean Well-Known Member

    Joined:
    Oct 19, 2012
    Messages:
    262
    Likes Received:
    12
    Trophy Points:
    18
    Location:
    Orlando, FL
    cPanel Access Level:
    Root Administrator
    First your firewall is blocking multiple failed login attempts as a security measure.

    You should look at the original login failures by reviewing /var/log/maillog

    Search for lines containing "auth failed".

    The line should list the email address and the remote IP (rip).

    You could also search for the IP to see all the mail activity.
     
  3. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    14,467
    Likes Received:
    196
    Trophy Points:
    63
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    LFD should have also emailed you on this. Do you get those?
     
  4. sammiller

    sammiller Registered

    Joined:
    Apr 12, 2013
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Website Owner
    This was very helpful thank you
     
Loading...

Share This Page