Page 1 of 1

DROP_IP_LOGGING and PS_INTERVAL

Posted: 05 Aug 2008, 12:36
by deadeye
I understand the problems with having both of these enabled, and maybe I have something misconfigured or am missing something.

The way I understand it if DROP_IP_LOGGING is disabled then no packets to blocked ip addresses are logged. Due to limited resources on the VPS I remove permanent blocks after a period of time, but only if I am not still seeing traffic from them. I also like to use the Port Scan Tracking because this automates something that I would otherwise be doing manually. My solution has been to regularly go into CSF and remove the duplicate ip's from Firewall Deny IP's so that I could use both of these features. With the changes in 3.41 I can no longer do this.

Would it be possible to have an additional option to enable DROP_IP_LOGGING along with Port Scan Tracking, or maybe log entries to a separate file?

Re: DROP_IP_LOGGING and PS_INTERVAL

Posted: 15 Jun 2013, 19:45
by sparkling
Has this issue ever been resolved? It would be very nice to be able to log all blocked IP attempts and also keep Port Scan Tracking enabled. Is there a work around?

Thanks!