Skip to main content

cphulk firewall blocking duration

Comments

4 comments

  • chanklish
    how can i make CPHULK block the ip addresses ?!
    0
  • cPanelMichael
    Hello @chanklish, I see you have Block IP addresses at the firewall level if they trigger brute force protection enabled, so the IP addresses should be blocked at the firewall level upon detection as a brute force attempt. Can you open a
    0
  • chanklish
    Hello @chanklish, I see you have Block IP addresses at the firewall level if they trigger brute force protection enabled, so the IP addresses should be blocked at the firewall level upon detection as a brute force attempt. Can you open a
    0
  • cPanelMichael
    Hello, To update, here's a summary of the response from one of our Technical Analysts on the support ticket: [QUOTE]This is happening because you have the cphulk protection set to only block failed logins for 5 minutes, and the one-day block is set to 10 failures. You can increase the protection time to allow for the firewall to continue to block the address for more than 5 minutes, or you can add this address to the blacklist to block it permanently. The temporary block is there to prevent flooding, and to allow legitimate users to correct their password authenticity, then login again at a later time without administrator intervention.
    Thank you.
    0

Please sign in to leave a comment.