To find out why your firewall is blocking someone, you can look for entries in this log file that relate to their IP address. If you find an entry for the blocked IP address, it will probably include the reason for the block, such as “Login attempts failed” or “Excessive resource usage.”
Once you’ve determined the reason for the block, you can take steps to resolve the issue and allow the IP address to access your site again. Some common solutions include:
Modifying firewall rules in CSF to allow IP address. You can do this by accessing the CSF configuration file, which is typically located at /etc/csf/csf.conf. Whitelist the IP address in the firewall so it is never blocked in the future. You can do this by adding the IP address to the “CSF Whitelist” in the CSF configuration file. Increase the threshold to trigger a block on the firewall. For example, if the IP address is blocked due to failed login attempts, you can increase the number of attempts allowed before a block is triggered. Address the underlying issue that is causing the crash, such as a vulnerability in your website’s code or weak passwords. It’s important to note that making changes to your firewall can have serious consequences if not done correctly, so make sure you fully understand the implications of any changes you make before implementing them. If you are not familiar with Linux command line and firewall configurations, it may be best to consult a professional for help.
You can use the following command to find the ConfigServer Security & Firewall (CSF) log file on your VPS hosting:
sudo find / -name “lfd.log”
This command will search the entire file system of your VPS hosting for a file called “lfd.log”. Once you’ve found the file, you can view its contents using the cat or less command:
sudo cat /path/to/lfd.log
sudo minus /path/to/lfd.log
The less command allows you to view the contents of the file one page at a time, which can be useful if the file is very large. You can navigate the file using the up and down arrow keys, and exit the minus command by pressing q.