Hello, Anyone here using CSF (ConfigServerFirewall) with net44...
I seem to have an issue ..
Seems Chinese hackers are obliterating my URONODE/JNOS Box... and I cannot even run it long enough to do a tcpdump without losing all network activity...
I have my config and allow and ignore files if anyone has an idea Id send them off list for review..
What I see when I start it CSF does great job of stopping the hackers.. and shortly thereafter it also stops net44..
I have in both allow and ignore files...
192.0.0.0/8 44.0.0.0/8 127.0.0.1
And I have ignore allow set to 1 in the config..
I see what I run csf -l
A line where its is deny tun0 !44.0.0.0/8
Even though just up from there is a listing of Source and destinations where its allowed.. I think the lfd function of csf is the reason..
But from what I read in the docs if I allow and ignore an ip or /8 it should allow via csf and lfd should ignore it.
Not sure what I am doing wrong.. But this has my system offline till figured out.
If I turn on the CSF FW it shuts me out of the 44net altogether..
If I turn it off same results due to hackers. Plus I am off the internet as well.
Many thanks 73 jerry N9LYA
----- No virus found in this message. Checked by AVG - www.avg.com Version: 2015.0.5557 / Virus Database: 4181/8439 - Release Date: 10/23/14
Slight Typo in previous email.
Corrected.. 192.168.1.0/24 44.0.0.0/8 127.0.0.1
I also changed testing to 0 so ldf does not start.. Same issue..
Anyway I reinstalled CSF and used saved config and allow and ignore files...
Net44 is still blocked.. This allows me to leave PC on and troubleshoot while maintaining internet on network.
Again any ideas.. Please reply and I can also supply the three files I mention off list.
73 jerry n9lya
----- No virus found in this message. Checked by AVG - www.avg.com Version: 2015.0.5557 / Virus Database: 4181/8439 - Release Date: 10/23/14
-
Jerry Kutche