Blocking a Country except 1 Domain

notanotherbot

• January 23, 2019 14:37

Good Day I've forced to block traffic to our Site/Mail from a country, in this case MX, too much spam/malware/attacks to our services. CC_DENY works excellent for this purpose, but we are facing 1 problem. Our company works with a bank (not our main bank) which is hosted enterely in Mexico. I have added in cPHulk the following data to whitelist the range : 168.165.0.0/16 The IP range is owned by the bank. I have added the range in ConfigServer MailScanner Front-End with no luck But our server can't reach the remote mailserver. 2019-01-23 16:22:00 cwd=/var/spool/MailScanner/incoming 6 args: /usr/sbin/exim -C /etc/exim_outgoing.conf -Mc 1gmO5r-0008Fi-6n 1gmO5s-0008Fs-32 2019-01-23 16:22:29 cwd=/usr/local/cpanel/whostmgr/docroot 6 args: exim -C /etc/exim_outgoing.conf -v -M 1gmO5r-0008Fi-6n +++ 1gmO5r-0008Fi-6n has not completed +++ 2019-01-23 16:21:47 1gmO5r-0008Fi-6n <= xxxxxxx@ourcompany.cl H=(DESKTOP6DDG8OS) [xxx.xx.xxx.xxx]:51340 P=esmtpa A=dovecot_login:xxxxxxx@ourcompany.cl S=2951 id=00a701d4b350$d705e3b0$8511ab10$@ourcompany.cl T="Test Mail" for xxxxx.xxxxx@example.com.mx 2019-01-23 16:22:00 1gmO5r-0008Fi-6n SMTP connection outbound 1548271320 1gmO5r-0008Fi-6n mycompany.cl xxxxx.xxxxx@mexicanbank.com.mx 2019-01-23 16:23:32 1gmO5r-0008Fi-6n H=smexstsip21.example.com.mx [168.165.xx.xx] Connection timed out 2019-01-23 16:24:35 1gmO5r-0008Fi-6n H=smexstsipgdl31.example.com.mx [168.165.xxx.xx] Connection timed out 2019-01-23 16:25:38 1gmO5r-0008Fi-6n H=smexstsipgdl11.example.com.mx [168.165.208.24] Connection timed out 2019-01-23 16:26:41 1gmO5r-0008Fi-6n H=smexstsip11.example.com.mx [168.165.xx.xx] Connection timed out
There is any config to bypass/make exception the good work of CC_DENY function? Thanks in Advance cPteam.

• 

  cPanelLauren

  • January 24, 2019 19:55

  Hi @notanotherbot You won't be able to do that with CC blocking enabled as it takes precedence over any whitelisting you might have in place. All CC blocking does is block all ranges associated with a country, it allows you to block massive amounts of IP addresses easily. In order to do what you're requesting you'd need to block all IPs besides that one which could prove daunting. It may be that ConfigServer has a better way around this as they know their product better and you might check in with them as well. You can do that here: ConfigServer Community Forum - Index page

  0
• 

  keat63

  • January 28, 2019 14:42

  Would something like this work I wonder.

  0

Please sign in to leave a comment.