Check CWP for Blocked IP

Stephan Le.
  • Updated
Follow

CSF (ConfigServer Security & Firewall) is a tool for securing servers. It works with iptables, the built-in firewall system, to make setting up and managing security rules easier.

With CSF, you can control incoming and outgoing traffic by specifying rules based on IP addresses, ports, and protocols. This helps protect servers from unauthorized access and various security threats.

Essentially, CSF and iptables work together to create a strong defense system for servers, making it simpler for administrators to enhance security and prevent potential attacks.

If you lose access to your server from a specific IP address, it is likely due to the IP being blocked in the server firewall, which can cause timeouts across various services like Website, Email, SSH, and FTP access.  This guide is designed to assist in verifying if an IP is Blocked in the ConfigServer & Firewall (CSF) or iptables and the steps to unblock it in Control Web Panel (CWP).

Related Article

Unblock IP in CSF

Check for Blocked IP

IMPORTANT:This solution will require root access. If this needs to be obtained, follow the guide on requesting root access.
NOTE: These steps will need to be performed from an IP address that is not currently blocked on the server. Please contact our Support team if you do not have another means of accessing the server.

  1. SSH into the server as root
  2. Check for an active status by using either service csf status or service iptables status
  3. Check CSF for blocked IP addresses using csf -g '12.34.56.78'
    TIP:     If the output does not yield any results and you still are not able to access, you can try the generic iptables checks by running iptables -nL | grep 12.34.56.78.
    REPLACE: 12.34.56.78 with the actual IP address.
    TIP: You can visit whatsmyipaddress or EasyIP to check your IP address.
  4. Check for the blocked IP reason grep 12.34.56.78 /var/log/lfd.log
    REPLACE: 12.34.56.78 with the IP address blocked.
  5. Unblock the IP from the deny List using csf -dr 12.34.56.78
    REPLACE:     12.34.56.78 with the IP address.
  6. Restart CSF to save changes using csf -r 

Related articles

Comments

0 comments

Article is closed for comments.