Sponsor:

Server and Web Integrator
Link:
Kloxo-MR logo
6.5.0 or 7.0.0
Click for "How to install"
Donation/Sponsorship:
Kloxo-MR is open-source.
Donate and or Sponsorship always welcome.
Click to:
Click Here
Please login or register. 2017-11-07, 23:32:23

Author Topic: blocked IP after scanPort -Kloxo-MR have build in firewall ?  (Read 1476 times)

0 Members and 1 Guest are viewing this topic.

Offline crossing

  • Senior Member
  • *
  • Posts: 336
  • Karma: +0/-0
    • View Profile
I have installed 'CSF firewall' and '(D)DoS Deflate' on my server and whitelisted my ISP IP's on '/usr/local/ddos/ignore.ip.list' and  '/etc/csf/csf.allow' . I downloaded Zenmap and start port scanning to see if it blocks my IP, after 20 seconds I was disconected from ssh, ftp and blocked my access to my websites. Luckily I have 2 internet connection on my pc. After around 30-40 minutes my blocked ip was unnblocked. Kloxo-MR blocked my ip ?  If not who did it ?
« Last Edit: 1970-01-01, 01:00:00 by Guest »
Kloxo-MR -> Great Panel ->  Great person behind it ->  Mustafa

Offline chrisf

  • Senior Master
  • **
  • Posts: 883
  • Karma: +11/-1
  • Gender: Male
  • Be the change that you wish to see in the world.
    • View Profile
    • Conviction's Hosting
Re: blocked IP after scanPort -Kloxo-MR have build in firewa
« Reply #1 on: 2013-08-26, 23:09:46 »
KloxoMR has no built in firewall.  It had to be CSF.  Did you manually add your ip or use csf -a xxx.xxx.xxx.xxxx ??

That appears to be a CSF tmp block.  Did you recieve an email detailing the port scan block?
« Last Edit: 1970-01-01, 01:00:00 by Guest »
Christopher

Knowledge in: PHP, Perl, MySQL, Javascript, Actionscript, FLASH, HTML, CSS
Server Administrator / Developer: https://convictionshosting.com

Offline crossing

  • Senior Member
  • *
  • Posts: 336
  • Karma: +0/-0
    • View Profile
Re: blocked IP after scanPort -Kloxo-MR have build in firewa
« Reply #2 on: 2013-08-27, 00:21:42 »
No mail received although I configured one. I added my ip's manualy inside the files '/usr/local/ddos/ignore.ip.list' and '/etc/csf/csf.allow' .

I have found my ip using 'iptables -L -n' :

Chain DENYIN (1 references)
target     prot opt source               destination
DROP       all  --  124.160.194.27       0.0.0.0/0
DROP       all  --  188.215.51.166       0.0.0.0/0
DROP       all  --  89.36.134.176        0.0.0.0/0
DROP       all  --  109.99.66.114        0.0.0.0/0
DROP       all  --  159.253.33.186       0.0.0.0/0

109.99.66.114 is my ip.

How to remove it and how did it get there ?
« Last Edit: 1970-01-01, 01:00:00 by Guest »
Kloxo-MR -> Great Panel ->  Great person behind it ->  Mustafa

Offline crossing

  • Senior Member
  • *
  • Posts: 336
  • Karma: +0/-0
    • View Profile
Re: blocked IP after scanPort -Kloxo-MR have build in firewa
« Reply #3 on: 2013-08-27, 01:06:37 »
I added my ip on 'csf.ignore' too ,I also enabled  IGNORE_ALLOW in csf.conf . Hope that will solve the problem.
« Last Edit: 1970-01-01, 01:00:00 by Guest »
Kloxo-MR -> Great Panel ->  Great person behind it ->  Mustafa

 


Top 10 Social Networking:    Facebook    Twitter    LinkedIn    Pinterest    Google Plus    Tumblr    Instagram    VK    Flickr    Vine

Page created in 0.042 seconds with 17 queries.

web stats analysis
 
Mirror created by MasterkinG32.CoM