how to whitelist a range of ips using BFD?

[roly]

hi

i've been using bfd succesfully for a long time but have been having trouble with it keep banning googlebot for annonymous ftp login attempts.

i've tried whitelisting a range e.g. for 66.249.72.104 and 66.249.72.208 i've been using 66.249.72 in ignore.hosts but it doesn't seem to work anyone know how you whitelist a range?

thanks in advance

 

[scsi]

http://directadmin.com/features.php?id=1252

 

[roly]

hi

thanks but i was refering to the bfd from rfxn i didn't realise the directadmin version was called bfd. i can't use the directadmin one because my server provider OVH insists on providing a custom kernel without module support which prevents me using this as well as apf and some other scripts.

thanks again

 

[LawsHosting]

my server provider OVH insists on providing a custom kernel without module support which prevents me using this as well as apf and some other scripts.

You do know they allow you to compile your own kernel, yes?

 

[roly]

You do know they allow you to compile your own kernel, yes?

hi

yes, i tried and was unsuccesful and have had to stick with there own custom version.

 

[nobaloney]

If you can't use their kernel and can't create a proper custom kernel, then if you need a particular module or modules they don't support, then your two options are to have someone else compile a custom kernel for you, or move your hosting elsewhere.

Of those two, I recommend the former, but preferably have someone with OVH kernel experience do the work for you.

Jeff

 

[roly]

hi jeff

the kernel issue is frustrating, i realise they do it for security, but they should at least give you a choice. i didn't realise until i got my hands on one of their servers that this was the case, but i'm prepared to put up with it because there kimsufi servers are top spec at a crazy low price. as far as getting someone to compile it, the trouble with that is that i'll be going back to him every time there's a kernel upograde.

i would prefer to use a normal kernel that i could just update with yum like i've alwaays done in the past, i have to compile the ovh one myself when they update it and that goes smoothly, but trying to install a standard kernel didn't work for me. but i can live with their custom one. i've only had a couple of issues where this has caused a problem - most firewall scripts like apf etc require certain modules, and the directadmin bfd script. however the firewall i have taken care of and up until this problem with rfxn bfd i have brute force detection taken care of i just need to know how to whitelist an ip range. i've asked at his blog but it's likely to take a long time to get an answer there and i know a lot of people on this forum used to use that script.

 

[nobaloney]

the trouble with that is that i'll be going back to him every time there's a kernel upograde.

You really don't need to update a kernel just because there's a new one; the new one may not do anything you need. And since kernel updates require at least a bit of downtime and the possibility of a crash (perhaps not on your vps, but certainly in many dedicated servers), you may want to reconsider installing new kernels just because they're there.

Jeff

 

[roly]

hi jeff

that's very interesting i didn't know that, i always kept upto date for what i tyhought was security reasons. btw its a decicated server not a vps.

regards

roland

 

[nobaloney]

You should be able to Google for information on any new kernel and see if it was a security release or not.

Jeff