CSF Firewall

Discussion in 'Feedback/Feature Requests' started by rlshosting, Dec 27, 2009.

  1. rlshosting

    rlshosting Member

    Would it be possible to add compatibility to this?

    Thanks a million. :)
  2. mistwang

    mistwang LiteSpeed Staff

    What do you mean "compatibility to CSF Firewall"?
    Exclude from LFD?
  3. rlshosting

    rlshosting Member

    I said on the configserver forums:
    Then I said:
    Then the admin said:
  4. mistwang

    mistwang LiteSpeed Staff

    Yes, CSF need to be configured to parse error log file for detected IP attacking the server.
    We will leave it for CSF developer or someone familiar with their regex setup.
  5. rlshosting

    rlshosting Member

    Any other firewalls you recommend that may work better with lite speed? APF maybe or does it work fine without any other firewall and just iptables?
  6. mistwang

    mistwang LiteSpeed Staff

    We recommend using fail2ban in this regard.
  7. khatfield

    khatfield Member

    So you're saying there is a log that can be parsed to block IP's via the local server firewalls?
  8. mistwang

    mistwang LiteSpeed Staff

    Yes, LSWS or LSLB log attacking IP addresses to main error log.
  9. ffeingol

    ffeingol Well-Known Member

    At last look LSWS writes out the 'mod_security' records slightly differently than actual mod_security. This causes CSF to not parse/pick up the LSWS mod_security log records. I can post more details if necessary.
  10. mistwang

    mistwang LiteSpeed Staff

    Please check the latest 4.0.12 release, if anything still prevent CSF from pickup it, we will fix.
  11. anewday

    anewday Moderator

    Thanks George, I wanted this to work a while ago.
  12. rlshosting

    rlshosting Member

    Is there a new version of lite speed 4.0.12 or is this fixed in this version already? It says it can not reinstall.

    Error: Failed to download release 4.0.12!
  13. mistwang

    mistwang LiteSpeed Staff

    That's a bug fixed in latest 4.0.12 build.

    Please download manually and run install.sh to upgrade.
  14. Tony

    Tony Well-Known Member

    Do the new versions for you pick up everything? I'm trying to rule out if it's our rules causing nothing to show up in logs or if it's more bugs as far as LSWS mod_security functionality replication.
  15. mistwang

    mistwang LiteSpeed Staff

    There was bug in our mod_security implementation, which may skip some rules for audit logging, it should have been addressed in our 4.0.12 release.

Share This Page