You can try to turn on logging in iptables.
For example
iptables -I INPUT -p tcp -m state --state NEW --dport 443 -j LOG --log-uid --log-prefix "new connection to port 443"
The command above will log every new (not yet established) connection to server on port 443 in system log.
Search found 2 matches
- 14 Feb 2020, 07:26
- Forum: General Discussion (csf)
- Topic: Can I see a log of blocked (dropped) connections?
- Replies: 1
- Views: 2129
- 12 Feb 2020, 11:34
- Forum: General Discussion (csf)
- Topic: Where is data from GLOBAL_IGNORE stored on server.
- Replies: 0
- Views: 4755
Where is data from GLOBAL_IGNORE stored on server.
Thanks for writing an awesome piece of software. I have a question about where on the server ip addresses from GLOBAL_IGNORE are stored, and if its possible to do any lookup towards this. I cant find anything in /etc/csf or /var/lib/csf/, and it doesn't say anything in readme file about this either....