Knowledgebase

Knowledgebase

Portal Home > Knowledgebase > Articles Database > CSF will not unblock FTP access


CSF will not unblock FTP access




Posted by cerrie, 08-15-2013, 02:28 PM
Hi All, I have a issue whereby CSF detected one of my IPs as PORT SCANNING as I was browsing and FTPing at the same time.. (i think). I have issued the command csf -a IP I can now browse the URL of the server and no longer see the messenger message. However I still get the messenger message for FTP access.. I have restarted LFD & CSF, Checked csf.deny for IP (not listed) but still no joy. Any ideas what may be happening here? -- FTP Client Log: Status: Resolving address of domain.com Status: Connecting to x.x.x.x:21... Status: Connection established, waiting for welcome message... Response: Your connection to this server has been blocked in this server's firewall. Error: Could not connect to server Server Log: tail -f /var/log/messages Aug 15 18:19:56 admin pure-ftpd: (ftpusername@x.x.x.x) [INFO] Timeout
Posted by CodyRo, 08-15-2013, 03:30 PM
Check if to make sure your IP is indeed in the proper chain / being accepted: If it's accepted see if you're using active or passive FTP. By default CSF blocks passive ports so you'd need to whitelist those outbound. Alternatively you could use active and it'd work as anticipated.
Posted by cerrie, 08-15-2013, 03:35 PM
Hi, FTP was working fine before lfd blocked me. This is the output of the command: #csf -g IP Chain num pkts bytes target prot opt in out source destination ALLOWIN 1 1268 241K ACCEPT all -- !lo * IP 0.0.0.0/0 ALLOWOUT 1 1101 340K ACCEPT all -- * !lo 0.0.0.0/0 IP ip6tables: Chain num pkts bytes target prot opt in out source destination No matches found for IP in ip6tables So it seems that my IP is allowed both in & out? Also the fact i am now seeing the messenger message would suggest CSF is still blocking me.
Posted by Kailash12, 08-16-2013, 01:35 AM
Try the following: SSH to you server and go to /etc/csf directory and run the following commands: csf --denyrm YOUR_IP csf --temprm YOUR_IP Now restart CSF using /etc/init.d/csf restart
Posted by cerrie, 08-19-2013, 08:59 AM
Excellent thanks! This did the trick!


Was this answer helpful?

Add to Favourites Add to Favourites    Print this Article Print this Article

Also Read
Linux/Chapro.A in Apache (Views: 810)
mod_cache problem: error returned while trying to return disk cached data (Views: 820)
Need USA/European IP ranges (Views: 795)
allreseller.com (Views: 844)
onewebhosting.com nightmare out of the gate (Views: 815)


Language:

LoadingRetrieving latest tweet...

Client Navigation
Useful Pages
Support Center
About 02link

02link provides enterprise hosting and server services at an amazing price. Don't see something that suits your needs? Get a free custom quote from one of our hosting experts.

Back to Top Copyright © 2018 DC International LLC. - All Rights Reserved.