Issue with GeoLite2 files and unwanted countries being blocked.
Posted: 31 Jul 2019, 03:08
Hello,
I have started receiving calls that clients websites are not accessible from countries which are not on my CC_DENY list. For example Canada. Looking through my logs I am seeing the following lines, repeated multiple times:
Jul 30 09:11:28 server1 lfd[16106]: CC: Processing GeoLite2 CSV Country/ASN database
Jul 30 09:11:31 server1 lfd[16106]: CC: Extracting zone from GeoLite2 CSV Country/ASN database for [995]
Jul 30 09:11:31 server1 lfd[16106]: CC: No entries found for [995] in /var/lib/csf/Geo/GeoLite2-ASN-Blocks-IPv4.csv
Jul 30 09:11:31 server1 lfd[16106]: CC: Extracting zone from GeoLite2 CSV Country/ASN database for [110]
Jul 30 09:11:31 server1 lfd[16106]: CC: No entries found for [110] in /var/lib/csf/Geo/GeoLite2-ASN-Blocks-IPv4.csv
Jul 30 09:11:31 server1 lfd[16106]: CC: Extracting zone from GeoLite2 CSV Country/ASN database for [993]
Jul 30 09:11:31 server1 lfd[16106]: CC: No entries found for [993] in /var/lib/csf/Geo/GeoLite2-ASN-Blocks-IPv4.csv
Jul 30 09:11:31 server1 lfd[16106]: CC: Extracting zone from GeoLite2 CSV Country/ASN database for [143]
Jul 30 09:11:31 server1 lfd[16106]: CC: No entries found for [143] in /var/lib/csf/Geo/GeoLite2-ASN-Blocks-IPv4.csv
When I check the Geo directory I am seeing the CSV files and they were updated with today's date.
-rw-r--r-- 1 root root 55 Jul 30 02:00 COPYRIGHT.txt
-rw-r--r-- 1 root root 20966622 Jul 30 02:00 GeoLite2-ASN-Blocks-IPv4.csv
-rw-r--r-- 1 root root 3208609 Jul 30 02:00 GeoLite2-ASN-Blocks-IPv6.csv
-rw-r--r-- 1 root root 12114354 Jul 30 02:00 GeoLite2-Country-Blocks-IPv4.csv
-rw-r--r-- 1 root root 3749798 Jul 30 02:00 GeoLite2-Country-Blocks-IPv6.csv
-rw-r--r-- 1 root root 9948 Jul 30 02:00 GeoLite2-Country-Locations-en.csv
-rw-r--r-- 1 root root 433 Jul 30 02:00 LICENSE.txt
-rw-r--r-- 1 root root 116 Jul 30 02:00 README.txt
BTW, this is with the latest version of CSF 13.04. The issue has been happening for at least a month.
Any ideas or suggestions on steps I can take to address the issue?
Thanks!
GM
I have started receiving calls that clients websites are not accessible from countries which are not on my CC_DENY list. For example Canada. Looking through my logs I am seeing the following lines, repeated multiple times:
Jul 30 09:11:28 server1 lfd[16106]: CC: Processing GeoLite2 CSV Country/ASN database
Jul 30 09:11:31 server1 lfd[16106]: CC: Extracting zone from GeoLite2 CSV Country/ASN database for [995]
Jul 30 09:11:31 server1 lfd[16106]: CC: No entries found for [995] in /var/lib/csf/Geo/GeoLite2-ASN-Blocks-IPv4.csv
Jul 30 09:11:31 server1 lfd[16106]: CC: Extracting zone from GeoLite2 CSV Country/ASN database for [110]
Jul 30 09:11:31 server1 lfd[16106]: CC: No entries found for [110] in /var/lib/csf/Geo/GeoLite2-ASN-Blocks-IPv4.csv
Jul 30 09:11:31 server1 lfd[16106]: CC: Extracting zone from GeoLite2 CSV Country/ASN database for [993]
Jul 30 09:11:31 server1 lfd[16106]: CC: No entries found for [993] in /var/lib/csf/Geo/GeoLite2-ASN-Blocks-IPv4.csv
Jul 30 09:11:31 server1 lfd[16106]: CC: Extracting zone from GeoLite2 CSV Country/ASN database for [143]
Jul 30 09:11:31 server1 lfd[16106]: CC: No entries found for [143] in /var/lib/csf/Geo/GeoLite2-ASN-Blocks-IPv4.csv
When I check the Geo directory I am seeing the CSV files and they were updated with today's date.
-rw-r--r-- 1 root root 55 Jul 30 02:00 COPYRIGHT.txt
-rw-r--r-- 1 root root 20966622 Jul 30 02:00 GeoLite2-ASN-Blocks-IPv4.csv
-rw-r--r-- 1 root root 3208609 Jul 30 02:00 GeoLite2-ASN-Blocks-IPv6.csv
-rw-r--r-- 1 root root 12114354 Jul 30 02:00 GeoLite2-Country-Blocks-IPv4.csv
-rw-r--r-- 1 root root 3749798 Jul 30 02:00 GeoLite2-Country-Blocks-IPv6.csv
-rw-r--r-- 1 root root 9948 Jul 30 02:00 GeoLite2-Country-Locations-en.csv
-rw-r--r-- 1 root root 433 Jul 30 02:00 LICENSE.txt
-rw-r--r-- 1 root root 116 Jul 30 02:00 README.txt
BTW, this is with the latest version of CSF 13.04. The issue has been happening for at least a month.
Any ideas or suggestions on steps I can take to address the issue?
Thanks!
GM