csf bacula rules/exceptions

csf bacula rules/exceptions

If you are running bacula and csf you must add an exceptions to the following IP's in /etc/csf/csf.allow and /etc/csf/csf.ignore
127.0.0.1
96.125.182.114
10.4.0.114
10.4.0.11/8
67.22.128.170/20
67.22.128.0/20 
96.125.182.0/20

Finally you also need to add this into /etc/csf/csf.conf
# Enable this option if you want lfd to ignore (i.e. don't block) IP addresses
# listed in csf.allow in addition to csf.ignore (the default). This option
# should be used with caution as it would mean that IP's allowed through the
# firewall from infected PC's could launch attacks on the server that lfd
# would ignore
IGNORE_ALLOW = "1"
# Allow incoming TCP ports
TCP_IN = "20,21,22,25,53,80,110,143,443,465,587,993,995,2077,2078,2082,2083,2086,2087,2095,2096,2222,26,9102,9103"

# Allow outgoing TCP ports
TCP_OUT = "20,21,22,25,37,43,53,80,110,113,443,587,873,993,995,2086,2087,2089,2703,9103,9102"

# Allow incoming UDP ports
UDP_IN = "20,21,53,9102"

# Allow outgoing UDP ports
# To allow outgoing traceroute add 33434:33523 to this list
UDP_OUT = "20,21,53,113,123,873,6277,24441,9103"

    • Related Articles

    • Basic IPTABLES rules

      Open up ports for selected services: ​---------------------------  we can start adding selected services to our firewall filter. The first such thing is a localhost interface: iptables -A INPUT -i lo -j ACCEPT We tell iptables to add (-A) a rule to ...

    • Updating ip table rules

      When you need to add a firewall rule in Linux, you will need to edit the iptables file, which is located in /etc/sysconfig . Before you make any changes be sure to make a copy of the current iptables file in the event something happens. Once the ...

    • How To Set Up a Firewall Using FirewallD on CentOS 7

      Introduction Firewalld is a complete firewall solution available by default on CentOS 7 servers. In this guide, we will cover how to set up a firewall for your server and show you the basics of managing the firewall with the firewall-cmd ...

    • Filezilla Server Directory Listing Not Found error.

      If you are having problems with setting up FileZilla Server to run behind Windows Firewall (specifically, it fails on "List" and the client receives a "Failed to receive directory listing" error), you must add the FileZilla Server application to ...

    • Outgoing emails have [SPAM] in the subject line

      If outgoing emails have [SPAM] in the subject line, or other spam related email issues, be sure to look at the rules in the anti spam preferences section of mail manager in hSphere, as they may need to be relaxed.