DROP_IP_LOGGING and PS_INTERVAL

Post Reply
deadeye
Junior Member
Posts: 61
Joined: 05 Jan 2007, 04:35
Contact:
Contact deadeye

DROP_IP_LOGGING and PS_INTERVAL

Post by deadeye »

I understand the problems with having both of these enabled, and maybe I have something misconfigured or am missing something.

The way I understand it if DROP_IP_LOGGING is disabled then no packets to blocked ip addresses are logged. Due to limited resources on the VPS I remove permanent blocks after a period of time, but only if I am not still seeing traffic from them. I also like to use the Port Scan Tracking because this automates something that I would otherwise be doing manually. My solution has been to regularly go into CSF and remove the duplicate ip's from Firewall Deny IP's so that I could use both of these features. With the changes in 3.41 I can no longer do this.

Would it be possible to have an additional option to enable DROP_IP_LOGGING along with Port Scan Tracking, or maybe log entries to a separate file?
Top
sparkling
Junior Member
Posts: 26
Joined: 09 Aug 2008, 17:07

Re: DROP_IP_LOGGING and PS_INTERVAL

Post by sparkling »

Has this issue ever been resolved? It would be very nice to be able to log all blocked IP attempts and also keep Port Scan Tracking enabled. Is there a work around?

Thanks!
Top
Post Reply

Return to “Suggestions (csf)”