Blocking IP's per port

Post Reply
LawsHosting
Junior Member
Posts: 4
Joined: 13 Jan 2018, 12:21

Blocking IP's per port

Post by LawsHosting »

Hello,

Excuse me if this is documented or been asked before.

Currently, when CSF block IPs, it is a blanket block (all ports). Is there a setting to block just the port that the "bad guy/girl" is attempting to brute force? I'm not keen on clients mistakingly entering, say, a wrong email password, get their IP blocked, and find out they are unable to access anything.

Thank you.
Sarah
Moderator
Posts: 934
Joined: 09 Dec 2006, 22:49

Re: Blocking IP's per port

Post by Sarah »

Check out the section titled "Advanced Allow/Deny Filters" in the csf readme.txt.
LawsHosting
Junior Member
Posts: 4
Joined: 13 Jan 2018, 12:21

Re: Blocking IP's per port

Post by LawsHosting »

What I mean is just block an IP from, say, port 25, when CSF is blocking...

eg. automatically add the advanced filters to csf.deny

tcp|in|d=25|s=<offending ip>

Not just the offending ip.
LawsHosting
Junior Member
Posts: 4
Joined: 13 Jan 2018, 12:21

Re: Blocking IP's per port

Post by LawsHosting »

Must have missed the LF_SELECT option
Post Reply