Questions tagged [blocking]
The blocking tag has no usage guidance.
127
questions
0
votes
2
answers
305
views
Server blocking after enabling ufw
I recently leased a Ubuntu 22.04 VPS server from a data centre in France. My office PC that links to this server is in Ireland.
My mobile internet IP seems to be static, i.e. it is the same from day ...
0
votes
1
answer
87
views
Postfix check_sender_access not blocking certain addresses
I keep getting spam emails from 'ional.co.uk'. I've got an address based blocking solution which handles all other emails just fine, but somehow this domain keeps getting through.
Full files I can add ...
0
votes
0
answers
22
views
Blocking WhatsApp traffic from a specific Country [duplicate]
How can a country block all WhatsApp traffic from a specific country?
0
votes
1
answer
762
views
How to check if a process is running or blocked on lock or I/O?
There are 2 instances of a script reported by ps.
How can I see in the command line if one of those (and which) is blocked on either I/O or on a file lock?
0
votes
0
answers
169
views
Restrict access to server for TOR and VPN users
Is this possible to restrict access to all users, who try to connect to my web server using TOR or VPN? I'd like to geoblock some users and also want to avoid them accessing my website even if they ...
0
votes
1
answer
618
views
Returns of UDP packets are discarded
I use High avaibility pfSense 2.6.0 cluster and I strange behavior with UDP when use Discord voice channel.
In fact, discord voice channel display "No route" and traffic analysis paquets ...
1
vote
0
answers
709
views
Possible STP Issue with Cisco SG350 Switches
we are having a weird issue with a network of Cisco SG350 Switches that I cannot figure out. We are thinking it may be related to STP but have verified all the normal problem points (i.e. proper ...
0
votes
1
answer
865
views
After USBGuard having blocked all USB devices including keyboard, is there any way to stop the service?
After USBGuard having blocked all USB devices including keyboard, is there any way to stop the service?
Or will I need to reinstall the system as it is rendered unusable if it is not remotely ...
2
votes
1
answer
4k
views
NGINX block location access and redirect to custom error page
I have a issue with my NGINX setting with redirecting to a custom error page on another location (incl. css, images, js) if a error page should be thrown.
At first I would like to block access to an ...
0
votes
0
answers
470
views
Bind/Fail2ban how to reject requests from certain domain
Today I got my VPS stucked.
Centos 7, 4 cores, Bind 9.11.
From ssh I got
Message from syslogd@host at Jul 18 09:46:16 ... kernel:NMI watchdog:
BUG: soft lockup - CPU#0 stuck for 41s! [f2b/observer:...
1
vote
1
answer
3k
views
How can I block all IPv6 Adresses starting like this 2a01:598:xxx in my .htaccess file?
How Can I block all IP Adresses that start like this 2a01:598: in my htaccess file?
I tried:
Deny from 2a01:598::/28
and i also tried it like this:
Deny from 2a01:598::
But it doesnt work? What ...
1
vote
1
answer
238
views
Alter database blocked by -2
We have a database that we can't restore because any alter database to put it into single_user mode (or offline) will fail because it is blocked by a distributed transaction.
sp_lock -2 shows the ...
1
vote
1
answer
1k
views
block website for a specific Mac address - lede firmware router [closed]
I am trying to block specific websites/urls in my home network only for specific users / Mac addresses, is this at all possible?
I have a Linksys WRT 1900 WRT v2 router running LEDE, a varient of ...
1
vote
1
answer
320
views
how to disable a spcific cgi page in apache?
I have an Apache server that hosts multiple sites, one of them use CGI, one of them does not. While security scanning this non-CGI site was flagged in the tool for security review for a CGI page.
I ...
2
votes
1
answer
1k
views
What firewall settings need to be used to block Microsoft Telemetry (spyware)?
I'm seeing a lot of products, such as SQL Server, coming out with opt-out spyware. This is marketed as "Telemtry" or "Customer Experience Improvement Program (CEIP)".
Can I disable the spyware in SQL ...
1
vote
1
answer
2k
views
UFW doesn't block the mongodb port
I have blocked 27018 using ufw but still, I can connect to that port from my computer using mongo command line tool.
is there any solution to this?
I tried to run ufw reload but result is still the ...
0
votes
1
answer
1k
views
Meraki blocking js and css from good sites that use Cloudfront.net
We have a Meraki device in place that is blocking static resources (i.e. js and css files) from Cloudfront.net and causing problems with valid sites loading. One specific error (below) indicated it ...
2
votes
1
answer
899
views
Apache access.log flood with GET ...HTTP/1.1" requests
I have a server with Ubuntu 14.04, laravel 5.2 framework.
On the last 24 hours somebody continously send flood requests from different ip adresses as shown below (log/apache2/access.log):
198.46....
5
votes
2
answers
7k
views
Squid Not Blocking SSL HTTPS Properly
So my goal here it to block only certain youtube channels.
If I do:
acl block_youtube dstdomain .youtube.com
http_access deny block_youtube
it blocks any access to youtube.
if I do:
acl ...
3
votes
0
answers
2k
views
Block Bad Bots in Nginx for Multiple Sites
I need to block a bunch of robots from crawling a few hundred sites hosted on a Nginx web server running on a Ubuntu 16.04 machine.
I've found a fairly simple example here
(important part of the ...
0
votes
1
answer
5k
views
HAProxy - Multiple sites, multiple acl's
We are busy with setting up HAProxy. Almost everything is working, except setting it up without multiple sites with different acl's.
What we want:
Using HAProxy with multiple sites, all on the same ...
1
vote
1
answer
540
views
is it possible to block a certain facebook or twitter account via firewall or proxy?
I would like to block/filter/censure certain social network users witch content may be offensive or violent, so that people inside my LAN ( say school ) will have access to the main site,
for example ...
0
votes
1
answer
169
views
MongoDB foreground index build blocks secondary reads for all databases
Today one of the users of our MongoDB 3.0.12 sharded cluster has (wrongly) issued a foreground index build on its own database (pride_archive_ms), after the operation completed on the primary member ...
1
vote
1
answer
586
views
How to keep md-raid from blocking IO?
I run a server with md-raid (software) level 1 (2 HDDs mirroring) and several different applications run on it.
The problem arises when file-intensive jobs (e.g. extracting large archives) run while ...
0
votes
1
answer
983
views
Watchguard blocking ports
I want to block the whole Internet for particular hosts. In this case I used policy 'Any" which basically blocks every single port (tcp+udp I believe). In FROM field I put particular IP address from ...
-1
votes
1
answer
611
views
How to block via Windows 2008 R2 firewall based on workstation's name?
over 8GB of traffic from a workstation named KHAOSSERVER has occurred since yesterday; in the Security Event Log are records like this:
An account failed to log on.
Subject:
Security ID: NULL ...
2
votes
0
answers
848
views
determine if threads on a cpu are blocked? What are the causes of thread blocks?
The load-average reported by uptime command also displayed in top provides the the average run-queue length over time (1, 5 and 15 minutes)
The run-queue length is the sum of the number of threads (...
0
votes
1
answer
160
views
Got blocked by server after starting TCP nodejs sever. Why?
I recently installed node on my VPS, and tried to complete a tutorial. I saved this code into server.js and hit node server.js in putty. I got instant "ban" from my VPS, I can't access it, however on ...
1
vote
2
answers
625
views
How to lock Windows Server 2008 R2?
I have a virtual server running Windows Server 2008 R2. There are approximately 4 users of the virtual machine that access the machine via RDS. I have noticed several instances where multiple users ...
4
votes
1
answer
4k
views
How do iptables work with NFQ in terms of traffic shaping in snort?
I'm trying to understand how iptables and NFQ work together with snort.
The reason that I ask this is because from what I understand snort can be set to IPS via NFQ but if you have iptables there ...
8
votes
4
answers
47k
views
Allow a certain URL path with Squid
I'm using Squid 3.4 on Debian, and I want to know how to allow certain sub-URLs while banning the rest of them.
Particularly, I want to ban access to reddit.com/* but allow access to reddit.com/r/foo/...
-3
votes
1
answer
4k
views
iptables rules for blocking specific packets [closed]
Im using the following iptables rule:
iptables -A INPUT -p tcp -m tcp --tcp-flags PSH,ACK PSH,ACK -m length --length 52 -m state --state ESTABLISHED -j DROP
It does it's job for blocking the ...
0
votes
1
answer
31
views
Apache2: How can I get Apache2 to not respond?
I didn't find a way but it can't be so hard : How make Apache2 Listen a port but not responding.
My VH:
<VirtualHost *:80>
ServerName catchall
</VirtualHost>
I don't want to respond ...
2
votes
1
answer
75
views
Block traffic to certain servers
In my organization, I'd like to make sure all servers are only accessible from the inside. The only exceptions are the mail and webservers.
What's the best way to do this?
My own suggestion was ...
1
vote
1
answer
154
views
User blocked in AD by some windroid device
We have a user that is constantly blocked. We checked the logs in the domain controllers and all the information shown is that a WINDROID device is the source. How can I know which device is causing ...
9
votes
1
answer
12k
views
Haproxy: reject traffic by user agent from file
I am trying to reject connections from specific user agents (by matching a substring of the user-agent header) using an haproxy ACL with -f option to read from a file. However it is not working, it ...
0
votes
1
answer
4k
views
Is it possible to block HTTP traffic from specific machines?
I have some web crawlers, and a specific website seems to be blocking traffic temporarily after some time. The thing is, even though all clients have the same external IP address (they access the ...
-6
votes
1
answer
225
views
Block EXE in a machine [closed]
How can i block all executables in a machine unless i verify it. I have multiple clients and i want to do it as programatically (I am using Visual-Studio-2010). It can be done through registry using ...
1
vote
1
answer
4k
views
Block empty user-agents nginx?
My site was under attack and I noticed all the user agents are blank. How can I block this with my nginx?
I have no idea what to block, if this is an empty user agent or what.
0
votes
2
answers
426
views
Apache not serving static content concurrently
When tried to open multiple pages from Codeigniter based custom CMS on different tabs, the first tab loads, while the subsequent tabs wait for the first tab to complete, then sequence follows randomly,...
-1
votes
1
answer
2k
views
How to block videos by title on youtube using Squid?
For example,i want to block videos that contain the word "cat" in the title.
I also do not want the blocked videos appearing in:
-Recommended Channels tab
-Recommended/related videos
-Search ...
1
vote
4
answers
25k
views
Fix/Bypass "Cannot connect to the real website-blocked" error in Google Chrome with OpenDNS blocking
Tl;Dr:
How do I stop chrome from refusing to load pages that are blocked by OpenDNS, where the server has explicitly requested HTTPS?
Long question:
I have a large problem with Chrome in my ...
5
votes
1
answer
4k
views
How to check if a process is non-blocking in linux without using a stack tracer?
A multi-cpu server is running several processes. One process has a thread that should always be in a spinning state, using 100% of the CPU it's been assigned. My current method (besides asking the ...
2
votes
2
answers
144
views
Can I restrict access to an apache website to a client whose IP address is on an ISP who allocates IP addresses via DHCP?
I have a website which I want to use for administrative purposes. I need to be sure that only people from certain machines can log on. the problem is they are on ISP networks. Will I truely get the ...
1
vote
0
answers
300
views
Apache Bot Blocking when using <Location> element
I was looking through my access logs today and concluded I should probably make an effort to deal with bad traffic. I am trying to use this list (https://github.com/bluedragonz/bad-bot-blocker) as as ...
2
votes
2
answers
1k
views
Rejecting traffic where ACCEPT header is empty on favicon.ico requests
As part of filtering out potential harmful traffic, I currently reject traffic where $_SERVER["HTTP_ACCEPT"] is empty.
I notice from my logs that a fair number of requests have been rejected due to ...
3
votes
2
answers
20k
views
MySQL SELECT query hangs
On my server I have 6 MySQL databases. They all power Wordpress websites. For some reason, 2 of these databases are not accessible. To my knowledge they use INNODB, but I can't confirm it as even ...
-1
votes
1
answer
76
views
statistics on port 22 blocking [closed]
What are the statistics on port 22 blocking by firewalls in small and medium sized enterprises? We have a product that a customer installs on a PC, which communicates via ssh to our cloud server. It ...
-1
votes
2
answers
2k
views
Allow visits only via domain, block by ip address
I am trying to block people from accessing my server via my ip address. Ideally I would like them to only be able to access it using my domain name. I have searched Google and unable to find ...
0
votes
4
answers
5k
views
Website filtering for OpenVPN clients
I am currently trying to block some websites by their domain names for all the clients of my OpenVPN server.
My first idea was to use the /etc/hosts file. But, its effects seem to be limited to the ...