The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

ip / csf firewall issue

Discussion in 'General Discussion' started by chmod root, Oct 27, 2006.

Thread Status:
Not open for further replies.
  1. chmod root

    chmod root Active Member

    Joined:
    Oct 18, 2006
    Messages:
    28
    Likes Received:
    0
    Trophy Points:
    1
    I installed chirpy's csf / lfd firewall and when starting firewall I get this

    Error: IP [ipaddress] is listed twice in ifconfig!, at line 657

    How do I fix this?

    the security check option in csf shows this

    "You have a nobody cron log file - you should check that this has not been created by an exploit"

    Where would I be able to trace this?
     
  2. chmod root

    chmod root Active Member

    Joined:
    Oct 18, 2006
    Messages:
    28
    Likes Received:
    0
    Trophy Points:
    1
    someone please help...need to get this firewall back on
     
  3. ujr

    ujr Well-Known Member

    Joined:
    Mar 19, 2004
    Messages:
    290
    Likes Received:
    0
    Trophy Points:
    16
    cron log is usually at /var/log/cron and owned by root:root, chmoded to 600.
     
  4. ujr

    ujr Well-Known Member

    Joined:
    Mar 19, 2004
    Messages:
    290
    Likes Received:
    0
    Trophy Points:
    16
    I don't use chirpy's csf, but it suggests that you should edit the ifconfig csf.conf and take out the duplicate entry for the IP
     
    #4 ujr, Oct 28, 2006
    Last edited: Oct 29, 2006
  5. deborahgsmith

    deborahgsmith Member

    Joined:
    May 18, 2004
    Messages:
    13
    Likes Received:
    0
    Trophy Points:
    0
    Location:
    SE Michigan
    Check your /var/spool/cron for an empty file named "nobody" and owned by root with 000 permissions.

    ;)
     
  6. r00t pAsSw0rd

    r00t pAsSw0rd Active Member

    Joined:
    Sep 14, 2006
    Messages:
    32
    Likes Received:
    0
    Trophy Points:
    6
    Same problem here with IP

    I do not see ifconfig.conf anywhere

    root@host [~]# updatedb
    root@host [~]# locate ifconfig.conf
    root@host [~]# locate *ifconfig*
    /usr/share/man/fr/man8/ifconfig.8.gz
    /usr/share/man/de/man8/ifconfig.8.gz
    /usr/share/man/man8/ifconfig.8.gz
    /usr/share/man/pt/man8/ifconfig.8.gz
    /sbin/ifconfig
    /root/.cpanel-datastore/_sbin_ifconfig_-a
     
  7. ujr

    ujr Well-Known Member

    Joined:
    Mar 19, 2004
    Messages:
    290
    Likes Received:
    0
    Trophy Points:
    16
    again, I don't use it, so don't know precisely, but the conf file is named:

    csf.conf
     
  8. ujr

    ujr Well-Known Member

    Joined:
    Mar 19, 2004
    Messages:
    290
    Likes Received:
    0
    Trophy Points:
    16
    Also, judging from the code, it is ETH_DEVICE that may be causing the issue.

    Anyway, enough said, I'll leave it to someone who actually uses this to be more specific.

    Cheers!
     
  9. ujr

    ujr Well-Known Member

    Joined:
    Mar 19, 2004
    Messages:
    290
    Likes Received:
    0
    Trophy Points:
    16
  10. r00t pAsSw0rd

    r00t pAsSw0rd Active Member

    Joined:
    Sep 14, 2006
    Messages:
    32
    Likes Received:
    0
    Trophy Points:
    6
    root@host [~]# mv /etc/sysconfig/network-scripts/ifcfg-eth0-range0 /root/
    mv: cannot stat `/etc/sysconfig/network-scripts/ifcfg-eth0-range0': No such file or directory

    Why is that?

    Code:
    root@host [/etc/sysconfig/network-scripts]# ls -lh
    total 228K
    drwxr-xr-x  2 root root 4.0K Oct  5 03:41 ./
    drwxr-xr-x  7 root root 4.0K Oct 29 16:51 ../
    -rw-r--r--  1 root root   98 Aug 13 17:37 ifcfg-eth0
    -rw-r--r--  1 root root   76 Aug 13 17:07 ifcfg-eth1
    -rw-r--r--  1 root root  254 Jun 20  2001 ifcfg-lo
    lrwxrwxrwx  1 root root   20 Oct  5 03:41 ifdown -> ../../../sbin/ifdown*
    -rwxr-xr-x  1 root root 1.1K Jun 20  2005 ifdown-aliases*
    -rwxr-xr-x  1 root root  820 Dec  1  2003 ifdown-ippp*
    -rwxr-xr-x  1 root root 1.8K Mar 28  2005 ifdown-ipsec*
    -rwxr-xr-x  1 root root 4.3K Sep 10  2004 ifdown-ipv6*
    lrwxrwxrwx  1 root root   11 Oct  5 03:41 ifdown-isdn -> ifdown-ippp*
    -rwxr-xr-x  1 root root 1.2K Aug  3  2004 ifdown-post*
    -rwxr-xr-x  1 root root 1.1K Sep 15  2003 ifdown-ppp*
    -rwxr-xr-x  1 root root 1.6K Nov 11  2002 ifdown-sit*
    -rwxr-xr-x  1 root root  902 Jun 26  2002 ifdown-sl*
    lrwxrwxrwx  1 root root   18 Oct  5 03:41 ifup -> ../../../sbin/ifup*
    -rwxr-xr-x  1 root root  13K Jun  7  2004 ifup-aliases*
    -rwxr-xr-x  1 root root 4.3K Nov 30  2005 ifup-ib*
    -rwxr-xr-x  1 root root  12K Aug 19  2004 ifup-ippp*
    -rwxr-xr-x  1 root root 7.7K Mar 28  2005 ifup-ipsec*
    -rwxr-xr-x  1 root root  11K Oct 16  2004 ifup-ipv6*
    -rwxr-xr-x  1 root root  821 Jun 26  2002 ifup-ipx*
    lrwxrwxrwx  1 root root    9 Oct  5 03:41 ifup-isdn -> ifup-ippp*
    -rwxr-xr-x  1 root root  689 Jun 26  2002 ifup-plip*
    -rwxr-xr-x  1 root root  926 Jun 26  2002 ifup-plusb*
    -rwxr-xr-x  1 root root 2.8K Aug 20  2004 ifup-post*
    -rwxr-xr-x  1 root root 3.9K Oct 22  2003 ifup-ppp*
    -rwxr-xr-x  1 root root 1.3K Apr 18  2005 ifup-routes*
    -rwxr-xr-x  1 root root 3.5K Oct 16  2004 ifup-sit*
    -rwxr-xr-x  1 root root 1.7K Jun 26  2002 ifup-sl*
    -rwxr-xr-x  1 root root 3.1K Oct 11  2004 ifup-wireless*
    -rwxr-xr-x  1 root root 5.3K Aug 17  2003 init.ipv6-global*
    -rw-r--r--  1 root root 9.4K Jun  9  2005 network-functions
    -rw-r--r--  1 root root  42K Dec  8  2004 network-functions-ipv6
    
     
  11. r00t pAsSw0rd

    r00t pAsSw0rd Active Member

    Joined:
    Sep 14, 2006
    Messages:
    32
    Likes Received:
    0
    Trophy Points:
    6
    I ran the first command for each file

    Code:
    root@host [/etc/sysconfig/network-scripts]# mv /etc/sysconfig/network-scripts/ifcfg-eth0 /root/
    root@host [/etc/sysconfig/network-scripts]# mv /etc/sysconfig/network-scripts/ifcfg-eth1 /root/
    root@host [/etc/sysconfig/network-scripts]# /etc/init.d/network restart
    Shutting down loopback interface:                          [  OK  ]
    Setting network parameters:                                [  OK  ]
    Bringing up loopback interface:                            [  OK  ]
    root@host [/etc/sysconfig/network-scripts]# /etc/init.d/ipaliases start
    
    I then did:

    # /etc/init.d/network restart
    # /etc/init.d/ipaliases start

    I still get the error in csf when starting firewall..

    Error: IP xxx is listed twice in ifconfig!
     
  12. r00t pAsSw0rd

    r00t pAsSw0rd Active Member

    Joined:
    Sep 14, 2006
    Messages:
    32
    Likes Received:
    0
    Trophy Points:
    6
    whm > show Ip Usage shows the main server IP twice. How do I fix this?
     
  13. r00t pAsSw0rd

    r00t pAsSw0rd Active Member

    Joined:
    Sep 14, 2006
    Messages:
    32
    Likes Received:
    0
    Trophy Points:
    6
    ifconfig shows this

    Code:
    eth0      Link encap:Ethernet  HWaddr 00:11:43:EF:0C:F5
              inet addr:xxx.xxx.65.106  Bcast:xxx.xxx.65.111  Mask:255.255.255.248
              inet6 addr: fe80::211:43ff:feef:cf5/64 Scope:Link
              UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
              RX packets:19778354 errors:0 dropped:0 overruns:0 frame:0
              TX packets:23820843 errors:0 dropped:0 overruns:0 carrier:0
              collisions:0 txqueuelen:10
              RX bytes:2066285513 (1.9 GiB)  TX bytes:1329171692 (1.2 GiB)
              Base address:0xecc0 Memory:dfae0000-dfb00000
    
    eth0:1    Link encap:Ethernet  HWaddr 00:11:43:EF:0C:F5
              inet addr:xxx.xxx.65.106  Bcast:xxx.xxx.65.255  Mask:255.255.255.0
              UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
              Base address:0xecc0 Memory:dfae0000-dfb00000
    
    eth0:2    Link encap:Ethernet  HWaddr 00:11:43:EF:0C:F5
              inet addr:xxx.xxx.65.107  Bcast:xxx.xxx.65.255  Mask:255.255.255.0
              UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
              Base address:0xecc0 Memory:dfae0000-dfb00000
    
    eth0:3    Link encap:Ethernet  HWaddr 00:11:43:EF:0C:F5
              inet addr:xxx.xxx.65.108  Bcast:xxx.xxx.65.255  Mask:255.255.255.0
              UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
              Base address:0xecc0 Memory:dfae0000-dfb00000
    
    ......
    How do I correct the duplicate?
     
  14. hostmedic

    hostmedic Well-Known Member

    Joined:
    Apr 30, 2003
    Messages:
    559
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Washington Court House, Ohio, United States
    cPanel Access Level:
    DataCenter Provider
    mv eth0:1 ignore.eth0:1.ignore

    I would just move eth0:1 out -

    then service ipaliases stop
    then service ipaliases start


    hope that helps
     
  15. r00t pAsSw0rd

    r00t pAsSw0rd Active Member

    Joined:
    Sep 14, 2006
    Messages:
    32
    Likes Received:
    0
    Trophy Points:
    6
    How do I "move it out"?
     
  16. r00t pAsSw0rd

    r00t pAsSw0rd Active Member

    Joined:
    Sep 14, 2006
    Messages:
    32
    Likes Received:
    0
    Trophy Points:
    6
    please help me
     
  17. r00t pAsSw0rd

    r00t pAsSw0rd Active Member

    Joined:
    Sep 14, 2006
    Messages:
    32
    Likes Received:
    0
    Trophy Points:
    6
  18. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    14,448
    Likes Received:
    195
    Trophy Points:
    63
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    This isn't an official cPanel product. You can either post to the thread about this, or visit chirpy at his site for support.
     
Loading...
Thread Status:
Not open for further replies.

Share This Page