Where can I find CSF logs?

David Beroff

Well-known member
Joined
Jun 14, 2016
Messages
1,006
Best answers
0
Ratings
92 1
Points
48
#1
I have installed CSF on my VPS hosting and there are some people contacted me they could not access my site like they were blocked by my firewall, I want to find out the problem from log files of CSF, where can I find it and how solve this problem?
 

AlbaHost

Well-known member
Joined
Jan 18, 2017
Messages
366
Best answers
1
Ratings
100 6
Points
28
#2
Joined
Jan 18, 2017
Messages
48
Best answers
0
Ratings
1
Points
8
#3
If you type the below command you can see the reason for the IP block in your server.
csf -g IP_ADDRESS

csf -dr IP_ADDRESS ( to remove the IP from your firewall)

After that type csf -r to restart the firewall.
 

Dewlance

Well-known member
Joined
Dec 20, 2014
Messages
102
Best answers
0
Ratings
19 1
Points
18
#4
In my server I found /var/log/lfd.logs file.

Other is /var/logs/messages and also monitor CSF alert (Enable alert/notify option in your CSF configuration).
 
Joined
Jan 16, 2017
Messages
53
Best answers
0
Ratings
7
Points
0
#5
CSF logs are stored in /var/log/lfd.logs
 

David Beroff

Well-known member
Joined
Jun 14, 2016
Messages
1,006
Best answers
0
Ratings
92 1
Points
48
#6
In my server I found /var/log/lfd.logs file.

Other is /var/logs/messages and also monitor CSF alert (Enable alert/notify option in your CSF configuration).
CSF logs are stored in /var/log/lfd.logs
thanks you guys for sharing this piece of this info but when I typed this in SSH

nano /var/log/lfd.logs
there is no content there.

Is it possible to check if a file is existing in a folder in VPS, for example lfd.logs is existing in /var/log/?
 
Joined
Jan 16, 2017
Messages
53
Best answers
0
Ratings
7
Points
0
#7
You can run below command to confirm if file is present:

------
[[email protected] ~]# ls -ld /var/log/lfd.log
-rw------- 1 root root 12059 Mar 2 00:00 /var/log/lfd.log
------
 

mobin

Well-known member
Joined
Jun 22, 2017
Messages
213
Best answers
0
Ratings
85 1
Points
28
#10
How to solve - thats the main question here

How to check whether they are blocked in CSF ?
1. Collect the visitor's public IP address.
2. run command "csf -g <IP ADDRESS>" as root user from your server command line and check output. Its far better to check IP block than going through logs manually.

How to unblock if the IP address is blocked?
1. If its permanent block, run the command "csf -dr <IP ADDRESS>" as root user from your server command line
2. If its temporary block, run the command "csf -tr <IP ADDRESS>" as root user from your server command line

Also you need to let them know why the IP address was blocked [ you shiuld get the reason from csf -g command ] and ask them to take care to avoid another block.
 
Latest Threads
Replies
1
Views
10
Replies
2
Views
16
Recommended Threads
Replies
0
Views
459
Replies
15
Views
2,267
Replies
4
Views
1,105
Replies
5
Views
1,380

Latest postsNew threads

Latest Hosting OffersNew Reviews

Sponsors

Latest Blog ArticlesMost Viewed Threads

Tag Cloud

You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.

Top