Make LFD deny IP with multi ports in one line

Post Reply
karnz
Junior Member
Posts: 2
Joined: 10 Oct 2018, 15:35

Make LFD deny IP with multi ports in one line

Post by karnz »

Hello,

Is it good to automatically deny IP with multi ports on the same service in one line instead of separate to two or three lines in case of LF_SELECT=1.

For example,
Normal:
tcp|in|d=25|s=1.1.1.1
tcp|in|d=465|s=1.1.1.1
tcp|in|d=587|s=1.1.1.1

To be:
tcp|in|d=25,465,587|s=1.1.1.1

This will help decrease number of line in csf.deny and not reach DENY_IP_LIMIT too fast.

Thanks.
ForumAdmin
Moderator
Posts: 1524
Joined: 01 Oct 2008, 09:24

Re: Make LFD deny IP with multi ports in one line

Post by ForumAdmin »

This functionality is already supported in csf. See the "Advanced Allow/Deny Filters" section of readme.txt (it's the last example).
karnz
Junior Member
Posts: 2
Joined: 10 Oct 2018, 15:35

Re: Make LFD deny IP with multi ports in one line

Post by karnz »

Yes it's supported but from my understanding it must be manually added.
Does it support for LFD when adding an IP?
Post Reply