Page 1 of 1
CSF Blocking cPanel Updates
Posted: 24 Mar 2013, 23:33
by deseweb
Hi
We are in trouble on one of the servers. This is a newly configured server with CSF, but the firewall is blocking automatic cPanel Updates, giving Timeout at the time of update.
When the CSF shuts down the updates occur normally without problems.
Any suggestions?
Thank you
Note 1: We have other servers with CSF, configured the same way and we do not have this problem.
Note 2: Sorry for my English!
Re: CSF Blocking cPanel Updates
Posted: 06 May 2013, 15:20
by tailtwister
Did you ever find a fix for this?
We've run into the same issue on a new server.
Re: CSF Blocking cPanel Updates
Posted: 07 May 2013, 14:28
by chatwizrd
Well what port is being blocked? Did you look in /var/log/messages
Re: CSF Blocking cPanel Updates
Posted: 07 May 2013, 16:25
by tailtwister
That's the weird part for me...
The ONLY thing that is going by in /var/log/messages are lots of lines like the one below (whether upcp is running or not). Running the script shows nothing different in the log file. But if turn off csf, the script will run.
kernel: Firewall: *UDP_IN Blocked* IN=venet0 OUT= MAC= SRC=xx.xx.xx.xx DST=xx.xx.xx.xx LEN=73 TOS=0x00 PREC=0x00 TTL=116 ID=6214 PROTO=UDP SPT=60595 DPT=53 LEN=53
However, port 53 is excluded from blocking in my csf.conf. I use the exact same csf configuration files on 11 different servers and this is the only one causing this issue.
Re: CSF Blocking cPanel Updates
Posted: 07 May 2013, 16:33
by tailtwister
Also, trying to run 'yum update' causes things to freeze and timeout if csf is running as well.
Re: CSF Blocking cPanel Updates
Posted: 07 May 2013, 19:40
by tailtwister
ok, got mine resolved...
I need to request a TUN/TAP activation of iptables/csf for our VPS. Once done, all works fine.