If I block an IP range in csf/lfd for example 87.106.0.0/16 1&1 servers because I am fed up with the constant attacks by scripts from infected servers there
Will that also block emails being received by my mail server from 1& 1 customers, because unfortunately I do have some users who have a 1&1 (gmx) email address who do email me occasionally
IP range blocking
Re: IP range blocking
Yes adding the 1&1 subnet would block all ports to your server (including mail) by default.dvk01 wrote:If I block an IP range in csf/lfd for example 87.106.0.0/16 1&1 servers because I am fed up with the constant attacks by scripts from infected servers there
Will that also block emails being received by my mail server from 1& 1 customers, because unfortunately I do have some users who have a 1&1 (gmx) email address who do email me occasionally
You could however add an advanced allow rule to allow SMTP connections from the 87.106.0.0/16 subnet:
In /etc/csf/csf.allow you would add:
Code: Select all
d=25|s=87.106.0.0/16
See the "Advanced Allow/Deny Filters" in the readme.txt for more info. (You could even create a deny rule for just port 80 coming from the 1 & 1 subnet also):
http://download.configserver.com/csf/readme.txt
I hope this helps!