Messages

1

CSF Firewall / CWP add temporary allow ip on login control panel

« on: March 27, 2024, 11:46:23 AM »

When I login the admin panel CWP add an temporary entry in csf to allow for 24 hours my own client IP.

I dont understand why my IP from where I loggin is added automatically in cwp/csf in section Temporary Allow and Deny IP entries.
I saw in iptables that the IP was added in Chain ALLOWIN after I've logged in CWP.
What is the default rule for port CWP accessing port 2031 in iptables : I saw policy INPUT drop and :
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 ctstate NEW tcp dpt:2031

Is there a way to change this behaviour: I mean to not be added automatically IP in CWP after in logged in CWP (/var/lib/csf/csf.tempallow ) ? I would like to see the configuration for this behaviour
I want to understand what is this and how can I change in order not to be added my IP automatically:

Chain ALLOWIN (1 references)
target prot opt source destination
ACCEPT all -- [my IP] 0.0.0.0/0

Chain ALLOWOUT (1 references)
target prot opt source destination
ACCEPT all -- 0.0.0.0/0 [my IP]


If for example a hacker succeed to login on cwp (steel the password etc ), cwp will add the hacker IP on temporary list then what is the benefit ?
i would like to know the advantages of the chain ALLOWIN

Thank you