CSF error when manually deny ip

Answered

rhm.geerts

• April 14, 2025 12:49

I was checking logs and wanted to deny an ip. I'm used to to this via console, works way faster than having to login to WHM.

Then I got this result from CSF.

server#csf -d 172.191.xxx.xxx
*Error* File does not exist: [/etc/csf/uptime-monitor-only-ips.txt] at /usr/sbin/csf line 1574.
Adding 172.191.xxx.xxx to csf.deny and iptables DROP...
csf: IPSET adding [172.191.xxx.xxx] to set [chain_DENY]

So the block was set, but why the error? I've never seen such file in CSF. And when checking line 1574 in /usr/sbin/csf it reads:

                        my @incfile = slurp($1);

I can't find anything about uptime-monitor-only-ips.txt in the whole csf binary.

What is going on here?
Could this have something to do with CPGuard conflicting or something like that?

• 

  quietFinn

  • April 14, 2025 16:43

  Check in /etc/csf/csf.ignore, you might find a line trying to include that /etc/csf/uptime-monitor-only-ips.txt

  1
• 

  rhm.geerts

  • April 14, 2025 17:01

  Yep, you're quite correct. Indeed it's in there.

  I presume that is included by cPanel then but cPanel did not create the file itself.

  In that case I don't need to worry, I just created the file myself and then things should be fine.

  Thank you very much!

  0
• 

  rbairwell

  • April 14, 2025 20:58

  Just a reminder that CSF (ConfigServer Firewall) is NOT a cPanel product (although it is very popular with cPanel users). It is a third party script from https://configserver.com/configserver-security-and-firewall/ 

  0
• 

  rhm.geerts

  • April 15, 2025 14:25

  rbairwell Yep, thank you, I'm aware of that.

  But when cPanel is making custom adjustments to it like in this case, I need to ask here. ;)

  0

Please sign in to leave a comment.