How to Delete All Deny IP From APF (deny_host.rules)

Linux, Noteworthy

How to Delete All Deny IP From APF (deny_host.rules)

Posted by

Stealth L.P.

May 13, 2021 On August 14, 2012

0

APF (Advanced Policy Firewall) is a system of firewall for Linux, based on iptables (netfilter).
When APFIt has blocked access to the server several IPs, there are two variants so you can get these limitations. The first version would be direct order from the console (or by ssh) by which you can remove the blocked IPs. You can do this by order:

apf -u 117.41.182.209

Where “117.41.182.209” is the IP that was blocked by the APF. The message resulting from the order will be:

apf(7931): {trust} removed 117.41.182.209 from trust system

If it is a large number of blocked IPs, the above method would take us some time until we removed them all. To delete all IPs, we will have to clean the file in which the blocked IPs are stored. That is, the file deny_hosts.rules FROM /etc/apf .
To achieve this, we delete the deny_host.rules file and restart the apf service. The commands below:

rm -rf /etc/apf/deny_host.rules 

/etc/init.d/apf restart

Now all the IPs blocked by APF have been deleted and the service restarted. If you want to retrieve the list of IPs blocked by APF, open the file deny_hosts.rules.back.

Advanced Policy Firewall Commands

usage /usr/local/sbin/apf [OPTION]
-s|–start ……………………. load all firewall rules
-r|–restart ………………….. stop (flush) & reload firewall rules
-f|–stop…….. ……………… stop (flush) all firewall rules
-l|–list …………………….. list all firewall rules
-t|–status …………………… output firewall status log
-e|–refresh ………………….. refresh & resolve dns names in trust rules
-a HOST CMT|–allow HOST COMMENT … add host (IP/FQDN) to allow_hosts.rules and
                                     immediately load new rule into firewall
-d HOST CMT|–deny HOST COMMENT …. add host (IP/FQDN) to deny_hosts.rules and
                                     immediately load new rule into firewall
-u|–remove HOST ………………. remove host from [glob]*_hosts.rules
                                     and immediately remove rule from firewall
-o|–ovars ……………………. output all configuration options

STEALTH SETTINGS – Delete the list of all IPs blocked by Advanced Policy Firewall.

How to Delete All Deny IP From APF (deny_host.rules)

Advanced Policy Firewall Brute Force Detection firewall linux LINUX Security Linux Tips

Linux, Noteworthy

About Stealth L.P.

Founder and editor Stealth Settings, din 2006 pana in prezent. Experienta pe sistemele de operare Linux (in special CentOS), Mac OS X , Windows XP > Windows 10 si WordPress (CMS).

View all posts by Stealth L.P.

nginx cannot load certificate fullchain.pem – Certbot Fix

The nginx cannot load certificate path/fullchain.pem error appears when we test the NGINX service after deleting Let's Encrypt certificates ge...

09 Jul

How To Fix nginx: [warn] the “ssl” directive is deprecated (Nginx / VestaCP)

"nginx: the "ssl" directive is deprecated, use the "listen ... ssl" directive instead in example.com.nginx.ssl.conf" este o alerta des...

09 Jul

How do you activate TLSV1.3 on ninx. Vestacp / Centos or Ubuntu

In this tutorial you will learn how to enable TLSv1.3 on NGINX. What does TLSv 1.3 mean, what does it help and why do you need it on your webserver as TLS s...