ConfigServer Community Forum

Peer support forums for ConfigServer Scripts
https://mail.forum.configserver.com/

Blocking IP's per port

https://mail.forum.configserver.com/viewtopic.php?t=10646

Page 1 of 1

Blocking IP's per port

Posted: 13 Jan 2018, 12:32
by LawsHosting
Hello,

Excuse me if this is documented or been asked before.

Currently, when CSF block IPs, it is a blanket block (all ports). Is there a setting to block just the port that the "bad guy/girl" is attempting to brute force? I'm not keen on clients mistakingly entering, say, a wrong email password, get their IP blocked, and find out they are unable to access anything.

Thank you.

Re: Blocking IP's per port

Posted: 13 Jan 2018, 12:39
by Sarah
Check out the section titled "Advanced Allow/Deny Filters" in the csf readme.txt.

Re: Blocking IP's per port

Posted: 13 Jan 2018, 13:03
by LawsHosting
What I mean is just block an IP from, say, port 25, when CSF is blocking...

eg. automatically add the advanced filters to csf.deny

tcp|in|d=25|s=<offending ip>

Not just the offending ip.

Re: Blocking IP's per port

Posted: 13 Jan 2018, 16:08
by LawsHosting
Must have missed the LF_SELECT option
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited