ConfigServer Community Forum

Peer support forums for ConfigServer Scripts
https://mail.forum.configserver.com/

csf keeps removing rules in csf.deny

https://mail.forum.configserver.com/viewtopic.php?t=1103

Page 1 of 1

csf keeps removing rules in csf.deny

Posted: 27 Feb 2008, 12:51
by dinot
I have rules like this in my csf.deny:

Code: Select all

tcp:out:d=80::u=99
CSF keeps removing these rules after updates it seems. As far as I know these rules are correct. The same example is mentioned in csf's readme file. Although there it also shows the format with 1 colon before 'u=uid'. I have tried that as well in the past, but that didn't help either.

tcp/udp:in/out:s/d=port:s/d=ip:u=uid

# TCP connections outbound to port 80 from UID 99

Code: Select all

tcp:out:d=80::u=99
When I list my iptables rules it does show the uid rules I'm using:

LOGDROPOUT tcp -- anywhere anywhere tcp dpt:http OWNER UID match nobody

So everything seems to be working, apart from the fact that csf keeps removing these rules.

Posted: 03 Mar 2008, 15:56
by chirpy
Do you have DENY_IP_LIMIT (value from csf.conf) block entries in csf.deny?

Posted: 04 Mar 2008, 13:52
by dinot
From csf.conf:

Code: Select all

DENY_IP_LIMIT = "100"
So,if I understand correctly, this setting also removes rules, not only ip's? I removed most of the blocked ip entries in csf.deny.

How can I make sure the rules are not being deleted, while still using the DENY_IP_LIMIT setting?
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited