ConfigServer Community Forum

chirpy wrote:I'll look into adding the additional ports for SMTP_BLOCK.

Please consider a full list of common SMTP ports, such as the following:

25, 26, 465, 587

25, default
26, common alternative
465, TLS
587, newer common alternative and meant for authenticated SMTP use

Thank you.

I am noticing an issue when performing a traceroute in that the outbound UDP packets are being filtered or blocked by iptables. Here is a munged snippet from the syslog: Oct 1 20:05:20 hostname kernel: Firewall: *UDP_OUT Blocked* IN= OUT=eth0 SRC=69.93.X.X DST=66.201.X.X LEN=38 TOS=0x00 PREC=0x00 TT...

Hello, Please consider adding dovecot (IMAP & POP binaries) to the stock-default LFD process ignore list; this will help to limit the [e-mail log "Spam"] that is triggered by simple IMAP and POP usage. Executable Path: /usr/libexec/dovecot/imap /usr/libexec/dovecot/pop3 Thank you for y...

Hello, I am experiencing an issue with v4.02 after an intended automatic upgrade early this morning; it seems that our custom port range specified for TeamSpeak voice service over UDP is being blocked for inbound and outbound traffic. Here are two of many syslog entries indicating the blocks (munged...

Hello, Please add the ability to define specific protocols to be accepted, such as Generic Route Encapsulation or gre (47) for VPN tunnels. The following are examples of the iptables rules required in the aforementioned configurations: -A INPUT -p gre -j ACCEPT -A OUTPUT -p gre -j ACCEPT or -A INPUT...

Did this happen to occur just after upgrading to v3.43? If so, then there was a change in the cPanel port blocks that could have caused this. If not, then I'd also need to iptables output including the chain for the leftover rule to investigate any further. Hello, This was a fresh install of v3.43,...

Hello, With v3.43 of CSF I have been seeing that an IP address may not always be removed from iptables/csf after the temporary time span has elapsed. The IP address is blocked for triggering LFD from failed logins; here is a more descriptive log report from LFD: (I''ve replaced the last octet with a...