APF Firewall Issues with Gravatar
The Gravatar server is having some issues with the system Firewall (APF). There will be instances where a specific IP address or a website is automatically added by the firewall in the block list (deny_host list) so even if the server is running fine and smooth, some ISPs and IP ranges may not be able to gain access to their websites.
What we do when we discover that this happens is to flush the IP block lists. Since the firewall does all the automated addition of IPs in its block list, we cannot monitor if a client IP has been blocked. We encourage you to let us know about it by submitted a support ticket at the Client Center so we can investigate immediately.
The firewall detects malicious activity and blocks the IPs of those activities:
- multiple failed attempts to login to cPanel and FTP
- brute force attacks
- port attacks
We have instances when a legit client has been blocked by our firewall just because of repeated failed attempts at using the wrong password in their cPanel.
January 22nd, 2009
