Difference between revisions of "How to check the APF firewall to see if your IP is Blocked"

Revision as of 17:14, 7 March 2013

How to check the APF firewall to see if your IP is blocked:

1. Login to server via SSH

2. Following command will open your APF firewalls list of blocked IP's. Command:

pico /etc/apf/deny_hosts.rules

3. Now hit CTRL + W to search the list

4. Paste the IP in to the "search" field that appears after hitting CTRL+W and hit "Enter"

5. If the IP is within the APF firewall, it will be highlighted when you hit "Enter" (It will also tell you the reason for the block)

You will see something similar to:

10.100.100.100

(This line, {bfd.pure-ftpd}, means that the IP was blocked for to many failed login attemps at FTP)

6. Now hit CTRL + X to close the APF Firewall block list and get back to the command line

How to remove a IP from the APF Firewall:

1. Use this command to remove the IP from the APF Firewall. Command

apf -u 'IP ADDRESS' (Example: apf -u '10.00.000.000')

You will receive a message similar to:

root@serv1 [~]# apf -u 10.00.000.000 apf(28177): {trust} removed 10.00.000.000 from trust system

@@ Line 2: / Line 2: @@
 . Login to server via SSH
 . Following command will open your APF firewalls list of blocked IP's. Command:
@@ Line 7: / Line 8: @@
 . Now hit CTRL + W to search the list
 . Paste the IP in to the "search" field that appears after hitting CTRL+W and hit "Enter"
 . If the IP is within the APF firewall, it will be highlighted when you hit "Enter" (It will also tell you the reason for the block)