CSF completely allow for certain ports event if IP was blocked for some other activity

Post Reply
Ilia
Junior Member
Posts: 98
Joined: 09 Feb 2013, 08:47

CSF completely allow for certain ports event if IP was blocked for some other activity

Post by Ilia »

Hi,

Could you please help me to understand how (and if it's possible) to make CSF always allow connection to certain ports, like 80 for instance, no matter what. For example, in case Port Scan took place and CSF needs to block this IP/range of IPs, is there a way to make sure that blocked IP will still be able to use port 80?

Regards,
Ilia
Top
Ilia
Junior Member
Posts: 98
Joined: 09 Feb 2013, 08:47

Re: CSF completely allow for certain ports event if IP was blocked for some other activity

Post by Ilia »

I know you could do in `csf.allow`

Code: Select all

tcp|in|d=80|s=1.2.3.4
But how to do it for all IPs? How do I make sure that no matter what HTTPd service will always be accessible?
Top
Ilia
Junior Member
Posts: 98
Joined: 09 Feb 2013, 08:47

Re: CSF completely allow for certain ports event if IP was blocked for some other activity

Post by Ilia »

Alright, what if I do this, will it work:

Code: Select all

tcp|in|d=80|s=0.0.0.0/0
Is CSF meant to do it?

What if I added it to `csf.ignore`?
Top
Post Reply

Return to “General Discussion (csf)”