Hello,
Is it good to automatically deny IP with multi ports on the same service in one line instead of separate to two or three lines in case of LF_SELECT=1.
For example,
Normal:
tcp|in|d=25|s=1.1.1.1
tcp|in|d=465|s=1.1.1.1
tcp|in|d=587|s=1.1.1.1
To be:
tcp|in|d=25,465,587|s=1.1.1.1
This will help decrease number of line in csf.deny and not reach DENY_IP_LIMIT too fast.
Thanks.
Make LFD deny IP with multi ports in one line
-
- Moderator
- Posts: 1524
- Joined: 01 Oct 2008, 09:24
Re: Make LFD deny IP with multi ports in one line
This functionality is already supported in csf. See the "Advanced Allow/Deny Filters" section of readme.txt (it's the last example).
Re: Make LFD deny IP with multi ports in one line
Yes it's supported but from my understanding it must be manually added.
Does it support for LFD when adding an IP?
Does it support for LFD when adding an IP?