LF_MODSEC does not block IPs on Litespeed + Modesecurity Rules

[Desperaduz]

im Using cPanel + Litessped + Modesecurity Rules ( Imunify360 LiteSpeed Rule Set )

ttps://files.imunify360.com/static/modsec/v2/meta_imunify360-full-litespeed.yaml

i enabled Modsec Trigger on CSF :

LF_MODSEC = 1
LF_MODSEC_PERM = 3600

Also i see Hits on :

Home »Security Center »ModSecurity™ Tools »Hits List :

"2020-08-01 00:17:16 domain.com 95.188.147.134 WARNING 403"

but On CSF and Temporary/Deny IP List this ip not blocked.

should i change any thing ? like modsec_log file location ? now is : /usr/local/apache/logs/error_log

is it right for litespeed ?



Top

 

[Pong]

How LSWS works and how CSF works are two different different topics. what you are observing is LiteSpeed mod_security work, but CSF doesn't work as expected. you should contact CSF support.

 

[winkybil]

I put in a ticket and the suggestion so far is to allow all unknown P2P traffic. Not really acceptable... so I pushed back on that and am waiting for another response.






Tutuapp 9apps Showbox