Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

ip / csf firewall issue

Discussion in 'General Discussion' started by chmod root, Oct 27, 2006.

Thread Status:
Not open for further replies.
  1. chmod root

    chmod root Active Member

    Joined:
    Oct 18, 2006
    Messages:
    28
    Likes Received:
    0
    Trophy Points:
    151
    I installed chirpy's csf / lfd firewall and when starting firewall I get this

    Error: IP [ipaddress] is listed twice in ifconfig!, at line 657

    How do I fix this?

    the security check option in csf shows this

    "You have a nobody cron log file - you should check that this has not been created by an exploit"

    Where would I be able to trace this?
     
  2. chmod root

    chmod root Active Member

    Joined:
    Oct 18, 2006
    Messages:
    28
    Likes Received:
    0
    Trophy Points:
    151
    someone please help...need to get this firewall back on
     
  3. ujr

    ujr Well-Known Member

    Joined:
    Mar 19, 2004
    Messages:
    290
    Likes Received:
    0
    Trophy Points:
    166
    cron log is usually at /var/log/cron and owned by root:root, chmoded to 600.
     
  4. ujr

    ujr Well-Known Member

    Joined:
    Mar 19, 2004
    Messages:
    290
    Likes Received:
    0
    Trophy Points:
    166
    I don't use chirpy's csf, but it suggests that you should edit the ifconfig csf.conf and take out the duplicate entry for the IP
     
    #4 ujr, Oct 28, 2006
    Last edited: Oct 29, 2006
  5. deborahgsmith

    deborahgsmith Member

    Joined:
    May 18, 2004
    Messages:
    13
    Likes Received:
    0
    Trophy Points:
    151
    Location:
    SE Michigan
    Check your /var/spool/cron for an empty file named "nobody" and owned by root with 000 permissions.

    ;)
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  6. r00t pAsSw0rd

    r00t pAsSw0rd Active Member

    Joined:
    Sep 14, 2006
    Messages:
    32
    Likes Received:
    0
    Trophy Points:
    156
    Same problem here with IP

    I do not see ifconfig.conf anywhere

    root@host [~]# updatedb
    root@host [~]# locate ifconfig.conf
    root@host [~]# locate *ifconfig*
    /usr/share/man/fr/man8/ifconfig.8.gz
    /usr/share/man/de/man8/ifconfig.8.gz
    /usr/share/man/man8/ifconfig.8.gz
    /usr/share/man/pt/man8/ifconfig.8.gz
    /sbin/ifconfig
    /root/.cpanel-datastore/_sbin_ifconfig_-a
     
  7. ujr

    ujr Well-Known Member

    Joined:
    Mar 19, 2004
    Messages:
    290
    Likes Received:
    0
    Trophy Points:
    166
    again, I don't use it, so don't know precisely, but the conf file is named:

    csf.conf
     
  8. ujr

    ujr Well-Known Member

    Joined:
    Mar 19, 2004
    Messages:
    290
    Likes Received:
    0
    Trophy Points:
    166
    Also, judging from the code, it is ETH_DEVICE that may be causing the issue.

    Anyway, enough said, I'll leave it to someone who actually uses this to be more specific.

    Cheers!
     
  9. ujr

    ujr Well-Known Member

    Joined:
    Mar 19, 2004
    Messages:
    290
    Likes Received:
    0
    Trophy Points:
    166
  10. r00t pAsSw0rd

    r00t pAsSw0rd Active Member

    Joined:
    Sep 14, 2006
    Messages:
    32
    Likes Received:
    0
    Trophy Points:
    156
    root@host [~]# mv /etc/sysconfig/network-scripts/ifcfg-eth0-range0 /root/
    mv: cannot stat `/etc/sysconfig/network-scripts/ifcfg-eth0-range0': No such file or directory

    Why is that?

    Code:
    root@host [/etc/sysconfig/network-scripts]# ls -lh
    total 228K
    drwxr-xr-x  2 root root 4.0K Oct  5 03:41 ./
    drwxr-xr-x  7 root root 4.0K Oct 29 16:51 ../
    -rw-r--r--  1 root root   98 Aug 13 17:37 ifcfg-eth0
    -rw-r--r--  1 root root   76 Aug 13 17:07 ifcfg-eth1
    -rw-r--r--  1 root root  254 Jun 20  2001 ifcfg-lo
    lrwxrwxrwx  1 root root   20 Oct  5 03:41 ifdown -> ../../../sbin/ifdown*
    -rwxr-xr-x  1 root root 1.1K Jun 20  2005 ifdown-aliases*
    -rwxr-xr-x  1 root root  820 Dec  1  2003 ifdown-ippp*
    -rwxr-xr-x  1 root root 1.8K Mar 28  2005 ifdown-ipsec*
    -rwxr-xr-x  1 root root 4.3K Sep 10  2004 ifdown-ipv6*
    lrwxrwxrwx  1 root root   11 Oct  5 03:41 ifdown-isdn -> ifdown-ippp*
    -rwxr-xr-x  1 root root 1.2K Aug  3  2004 ifdown-post*
    -rwxr-xr-x  1 root root 1.1K Sep 15  2003 ifdown-ppp*
    -rwxr-xr-x  1 root root 1.6K Nov 11  2002 ifdown-sit*
    -rwxr-xr-x  1 root root  902 Jun 26  2002 ifdown-sl*
    lrwxrwxrwx  1 root root   18 Oct  5 03:41 ifup -> ../../../sbin/ifup*
    -rwxr-xr-x  1 root root  13K Jun  7  2004 ifup-aliases*
    -rwxr-xr-x  1 root root 4.3K Nov 30  2005 ifup-ib*
    -rwxr-xr-x  1 root root  12K Aug 19  2004 ifup-ippp*
    -rwxr-xr-x  1 root root 7.7K Mar 28  2005 ifup-ipsec*
    -rwxr-xr-x  1 root root  11K Oct 16  2004 ifup-ipv6*
    -rwxr-xr-x  1 root root  821 Jun 26  2002 ifup-ipx*
    lrwxrwxrwx  1 root root    9 Oct  5 03:41 ifup-isdn -> ifup-ippp*
    -rwxr-xr-x  1 root root  689 Jun 26  2002 ifup-plip*
    -rwxr-xr-x  1 root root  926 Jun 26  2002 ifup-plusb*
    -rwxr-xr-x  1 root root 2.8K Aug 20  2004 ifup-post*
    -rwxr-xr-x  1 root root 3.9K Oct 22  2003 ifup-ppp*
    -rwxr-xr-x  1 root root 1.3K Apr 18  2005 ifup-routes*
    -rwxr-xr-x  1 root root 3.5K Oct 16  2004 ifup-sit*
    -rwxr-xr-x  1 root root 1.7K Jun 26  2002 ifup-sl*
    -rwxr-xr-x  1 root root 3.1K Oct 11  2004 ifup-wireless*
    -rwxr-xr-x  1 root root 5.3K Aug 17  2003 init.ipv6-global*
    -rw-r--r--  1 root root 9.4K Jun  9  2005 network-functions
    -rw-r--r--  1 root root  42K Dec  8  2004 network-functions-ipv6
    
     
  11. r00t pAsSw0rd

    r00t pAsSw0rd Active Member

    Joined:
    Sep 14, 2006
    Messages:
    32
    Likes Received:
    0
    Trophy Points:
    156
    I ran the first command for each file

    Code:
    root@host [/etc/sysconfig/network-scripts]# mv /etc/sysconfig/network-scripts/ifcfg-eth0 /root/
    root@host [/etc/sysconfig/network-scripts]# mv /etc/sysconfig/network-scripts/ifcfg-eth1 /root/
    root@host [/etc/sysconfig/network-scripts]# /etc/init.d/network restart
    Shutting down loopback interface:                          [  OK  ]
    Setting network parameters:                                [  OK  ]
    Bringing up loopback interface:                            [  OK  ]
    root@host [/etc/sysconfig/network-scripts]# /etc/init.d/ipaliases start
    
    I then did:

    # /etc/init.d/network restart
    # /etc/init.d/ipaliases start

    I still get the error in csf when starting firewall..

    Error: IP xxx is listed twice in ifconfig!
     
  12. r00t pAsSw0rd

    r00t pAsSw0rd Active Member

    Joined:
    Sep 14, 2006
    Messages:
    32
    Likes Received:
    0
    Trophy Points:
    156
    whm > show Ip Usage shows the main server IP twice. How do I fix this?
     
  13. r00t pAsSw0rd

    r00t pAsSw0rd Active Member

    Joined:
    Sep 14, 2006
    Messages:
    32
    Likes Received:
    0
    Trophy Points:
    156
    ifconfig shows this

    Code:
    eth0      Link encap:Ethernet  HWaddr 00:11:43:EF:0C:F5
              inet addr:xxx.xxx.65.106  Bcast:xxx.xxx.65.111  Mask:255.255.255.248
              inet6 addr: fe80::211:43ff:feef:cf5/64 Scope:Link
              UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
              RX packets:19778354 errors:0 dropped:0 overruns:0 frame:0
              TX packets:23820843 errors:0 dropped:0 overruns:0 carrier:0
              collisions:0 txqueuelen:10
              RX bytes:2066285513 (1.9 GiB)  TX bytes:1329171692 (1.2 GiB)
              Base address:0xecc0 Memory:dfae0000-dfb00000
    
    eth0:1    Link encap:Ethernet  HWaddr 00:11:43:EF:0C:F5
              inet addr:xxx.xxx.65.106  Bcast:xxx.xxx.65.255  Mask:255.255.255.0
              UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
              Base address:0xecc0 Memory:dfae0000-dfb00000
    
    eth0:2    Link encap:Ethernet  HWaddr 00:11:43:EF:0C:F5
              inet addr:xxx.xxx.65.107  Bcast:xxx.xxx.65.255  Mask:255.255.255.0
              UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
              Base address:0xecc0 Memory:dfae0000-dfb00000
    
    eth0:3    Link encap:Ethernet  HWaddr 00:11:43:EF:0C:F5
              inet addr:xxx.xxx.65.108  Bcast:xxx.xxx.65.255  Mask:255.255.255.0
              UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
              Base address:0xecc0 Memory:dfae0000-dfb00000
    
    ......
    How do I correct the duplicate?
     
  14. hostmedic

    hostmedic Well-Known Member

    Joined:
    Apr 30, 2003
    Messages:
    544
    Likes Received:
    0
    Trophy Points:
    166
    Location:
    Washington Court House, Ohio, United States
    cPanel Access Level:
    DataCenter Provider
    mv eth0:1 ignore.eth0:1.ignore

    I would just move eth0:1 out -

    then service ipaliases stop
    then service ipaliases start


    hope that helps
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  15. r00t pAsSw0rd

    r00t pAsSw0rd Active Member

    Joined:
    Sep 14, 2006
    Messages:
    32
    Likes Received:
    0
    Trophy Points:
    156
    How do I "move it out"?
     
  16. r00t pAsSw0rd

    r00t pAsSw0rd Active Member

    Joined:
    Sep 14, 2006
    Messages:
    32
    Likes Received:
    0
    Trophy Points:
    156
    please help me
     
  17. r00t pAsSw0rd

    r00t pAsSw0rd Active Member

    Joined:
    Sep 14, 2006
    Messages:
    32
    Likes Received:
    0
    Trophy Points:
    156
  18. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    16,170
    Likes Received:
    370
    Trophy Points:
    583
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    This isn't an official cPanel product. You can either post to the thread about this, or visit chirpy at his site for support.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
Loading...
Thread Status:
Not open for further replies.

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice