HEX
Server: Apache
System: Linux cp11.instainternet.com 4.18.0-553.94.1.lve.el8.x86_64 #1 SMP Thu Jan 22 12:37:22 UTC 2026 x86_64
User: urbansports (1371)
PHP: 8.2.29
Disabled: NONE
$ pwd: /var/tmp/csf/
Upload Files
File: //var/tmp/csf/cpanel.comodo.ignore
# #
#   @app                ConfigServer Firewall & Security (CSF)
#                       Login Failure Daemon (LFD)
#   @website            https://configserver.dev
#   @docs               https://docs.configserver.dev
#   @download           https://download.configserver.dev
#   @repo               https://github.com/Aetherinox/csf-firewall
#   @copyright          Copyright (C) 2025-2026 Aetherinox
#                       Copyright (C) 2006-2025 Jonathan Michaelson
#                       Copyright (C) 2006-2025 Way to the Web Ltd.
#   @license            GPLv3
#   @updated            10.08.2025
#   
#   This program is free software; you can redistribute it and/or modify
#   it under the terms of the GNU General Public License as published by
#   the Free Software Foundation; either version 3 of the License, or (at
#   your option) any later version.
#   
#   This program is distributed in the hope that it will be useful, but
#   WITHOUT ANY WARRANTY; without even the implied warranty of
#   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
#   General Public License for more details.
#   
#   You should have received a copy of the GNU General Public License
#   along with this program; if not, see <https://www.gnu.org/licenses>.
# #

# #
#   This file contains IP addresses that are both allowed through the firewall
#   and ignored by the Login Failure Daemon (lfd). These IPs belong to
#   Sectigo (formerly Comodo) and are used by cPanel’s free AutoSSL service
#   introduced in version 58 and later.
#   
#   By ignoring these IPs, CSF ensures that certificate validation and renewal
#   traffic from Sectigo is not blocked or rate-limited by security rules.
#   
#   If you do not wish to include these IPs, remove the "Include" line for this
#   file from your csf.ignore configuration. That include entry is only added once.
#   
#   ⚠️ Note:    This file is automatically managed by cPanel and CSF updates.
#               Do NOT manually modify or remove entries in this file, as your
#               changes will be overwritten during updates.
# #

# #
#   There is confusion about the difference between the files:
#       - cpanel.comodo.allow
#       - cpanel.comodo.ignore
#   
#   cpanel.comodo.allow                 Whitelist Sectigo IPs through the firewall.
#                  Desc:                Ensure cPanel’s AutoSSL servers can reach
#                                           your server — no firewall blocks.
#               Affects:                iptables
#   
#   cpanel.comodo.ignore                Exclude Sectigo IPs from login/banning checks.
#                  Desc:                Prevents CSF’s brute-force detection system
#                                           from accidentally blocking them.
#               Affects:                lfd (Login Failure Daemon)
# #

178.255.81.12 # Sectigo SSL Resolver
178.255.81.13 # Sectigo SSL Resolver
91.199.212.52 # Sectigo DCV Server
91.199.212.132 # Sectigo DCV Server
199.66.201.132 # Sectigo DCV Backup Server
2a02:1788:400:1ce4::/64 # Sectigo DCV Server
2a02:1788:400:1ce4::/64 # Sectigo DCV Server
@ Telegram