Skip to main content

Apache24 / mod_evasive issue / DOSWhitelist not working?

Comments

7 comments

  • cPRex Jurassic Moderator

    Hey there!  This is one of those "it should just work" type of things as we tell people to do exactly what you did in our documentation here:

    https://docs.cpanel.net/ea4/apache/apache-modules/apache-module-evasive/#configuration-directives

    Could you create a ticket so this can be investigated?

    0
  • RickKukiela

    I would absolutely love to create a ticket, but since we lease our server and have our CPanel license through a 3rd party I can no longer create a ticket directly :(

    I guess I will create a ticket with my provider and reference this post and see if they can work it out with you guys.

    Thanks!

    0
  • cPRex Jurassic Moderator

    For sure - and then if they need to escalate the issue to us they can!

    0
  • RickKukiela

    cPRex

    I just want to follow up here because I feel like I'm really spinning my wheels having to go through my reseller to report this bug.

    My reseller opened a ticket with cPanel and it was suggested by cPanel that the IP in question was on the mod_evasive block list which overrules the white list and that to fix the issue we simply needed to remove the IP from the block list.

    The problem is that the IP in question is assigned to the server that is blocking it. When EA4 installed mod_evasive it automatically detected all the IP addresses assigned to the server and preset the whitelist to include ALL of those IPs from the beginning (including the IP in question). Therefore, what cPanel is suggesting is literally IMPOSSIBLE because if the whitelist in mod_evasive was actually working, then there would be no possible way for this IP address to end up on the block list in the first place.

    That being said, my reseller removed the IP from the block list. The whitelist shows the IP is present in the config. I ran my script and then mod_evasive blocked it again.

    There is something wrong with either mod_evasive itself, or the way the EA4 configuration is defined that is somehow allowing it to block IPs defined in the white list configuration.

    I want cPanel to confirm there is an issue (they have been permitted to sign into my server via my ticket with my reseller already), and then figure out if the issue is with your EA4 stuff, or with mod_evasive itself, and if the ticket needs to be escalated to the mod_evasive developers than so be it. 

    There is something not right with this.

    0
  • cPRex Jurassic Moderator

    Do you have that ticket number?  It should start with 95xxxxx

    0
  • RickKukiela

    Unfortunately a ticket number was not included when they replied to me with what was said by your team. I updated my ticket to ask for it so if I am able to get it, I will pass it along.

    In the interim, I can tell you that my ticket number with my reseller is 20340129 and my reseller is Liquid Web, if that helps at all.

    0
  • cPRex Jurassic Moderator

    Unfortunately that doesn't help me as I can't see into their system to get that number.

    I will say, if they made a ticket with us, we're on it and we'll either get things working or make a case with our developers to get things adjusted.

    0

Please sign in to leave a comment.