Results 1 to 6 of 6
  1. #1
    Join Date
    Feb 2004
    Location
    Phoenix, AZ
    Posts
    162

    Default APF blocks Softlayer IP range and WHT

    This came as a surprise today, I setup a server-based RSS reader and could not get WHT's forum RSS feeds. A little digging revealed it was the default APF installation that was blocking the 174.0.0.0/8 range, which includes WHT and a chunk of Softlayer's ip range.

    The quick fix is easy, just remove that range from the /etc/apf/internals/reserved.networks file and restart, in the latest apf version, I don't know how many apf versions back this block goes.

    The APF folks do a fantastic job in keeping APF up to date, but this seems to be recent update to this particular ip range that hasn't made it into APF yet.
    bigwrench

  2. #2
    Join Date
    Feb 2008
    Location
    Houston, Texas, USA
    Posts
    2,955
    I had reported this 4 months ago when WHT switched to SL from RS (I use APF on my laptop). I guess that's a long time to update their BOGON list!

    http://www.webhostingtalk.com/showthread.php?t=853703

    Regards
    UNIXy - Fully Managed Servers and Clusters - Established in 2006
    [ cPanel Varnish Nginx Plugin ] - Enhance LiteSpeed and Apache Performance
    www.unixy.net - Los Angeles | Houston | Atlanta | Rotterdam
    Love to help pro bono (time permitting). joe > unixy.net

  3. #3
    Join Date
    Feb 2004
    Location
    Phoenix, AZ
    Posts
    162
    It's always a big concern when you can't read WHT! Everything just stops.
    bigwrench

  4. #4
    Join Date
    Feb 2004
    Location
    Phoenix, AZ
    Posts
    162
    It turns out that newer versions of APF already have a built-in solution to this and future address space allocations as the internet grows. The DLIST_* options can be turned on in conf.apf for automatic update downloads.

    The particular option for newly allocated ip address blocks is DLIST_RESERVED, set it to "1" and new ip blocks will stop being blocked by APF. According to the response I got from the APF group, 174/8 has already been updated, it only appears after updates are enabled though.

    The APF built-in solution is obviously better than my original quick-fix suggestion.
    bigwrench

  5. #5
    Join Date
    Mar 2009
    Posts
    245
    Damn,i have netcraft toolbar which shows you on which host site is hosted,and didn't noticed at all wht now is on softlayer.Nice to know that since i host there as well.

  6. #6
    Join Date
    Dec 2002
    Posts
    53
    We routinely block Softlayer, the Planet, Rackspace, etc due to constant spam, port scanning, PHP attacks, etc coming from those IP's.

    Example:

    http://www.webmasterworld.com/search...rs/3715084.htm

    and

    Those of you who use my exploited servers blocklist are already aware that Softlayer's IP range is in the list of servers being exploited for spam and hosting malware. The IP range is expressed as what is known as a CIDR and in the case of Softlayer the CIDR to block is 75.126.0.0/16 - which covers all IP addresses from 75.126.0.0 through 75.126.255.255. The CIDR assigned to the infected Italian website is 75.126.135.128/28. This message has already been reported to SpamCop, by numerous reporting recipients. They will notify the companies involved in hosting this malware threat, but, the timing of this spam threat is no coincidence. This threat was released on the Easter long holiday weekend, when support personnel may be out or short-handed until Tuesday, in the hopes of maximizing the usability of the ruse.
    Last edited by Frontpage; 08-05-2009 at 08:36 PM.

Similar Threads

  1. SoftLayer - take your pick - Harpertown Blowout *or* Double Default RAM!
    By SoftLayer Sales in forum Dedicated Hosting Offers
    Replies: 8
    Last Post: 07-18-2008, 04:30 AM
  2. SoftLayer - Double Default HDD Special!
    By SoftLayer Sales in forum Dedicated Hosting Offers
    Replies: 2
    Last Post: 04-26-2008, 05:08 PM
  3. SoftLayer - Double default RAM and HDD!
    By SoftLayer Sales in forum Dedicated Hosting Offers
    Replies: 13
    Last Post: 03-29-2008, 11:49 AM
  4. default files cpanel blocks?
    By jtan in forum Reseller Hosting
    Replies: 0
    Last Post: 12-10-2002, 12:52 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •