Announcement

Collapse
No announcement yet.

How to : Adding stability to CCcam

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • How to : Adding stability to CCcam

    How to : Adding stability to CCcam



    If you have unwanted users on your cccam server. Some users can cause cccam to crash.

    If you have /tmp/warnings.txt file you can see users that are trying to log in to your server without your permission.

    There are two solutions:

    1. Block IP directly in your router. If you have router where you can use Tomato firmware, find this section ?> Administration/Scripts/Firewall. Then add this line:
    iptables -I FORWARD -d IP of user that is attacking you -j DROP

    This only works if user has static IP. If user does not have static IP there is another solution. BUT you need to be using Linux PC as cccam server. The Solution is called Fail2Ban!

    If you have Fedora linux install Fail2Ban with this command: yum install fail2ban
    If you have Ubuntu/Debian use: apt-get install fail2ban

    Next command is (use telnet):
    nano /etc/fail2ban/jail.conf

    You need to look for this lines:

    # ?ignoreip? can be an IP address, a CIDR mask or a DNS host
    ignoreip = 127.0.0.1 192.168.1.72 ?> here you need to put addresses that will be ignored by fail2ban!
    maxretry = 3

    [cccam-12000]

    enabled = true
    port = 12000 ?> port of your cccam server. I have 12333 for example.
    filter = cccam
    action = iptables[name=CCcam0, port=12000, protocol=tcp] ?> here you only need to change port to 12333 for example.
    logpath = /tmp/warnings.txt
    maxretry = 10
    bantime = 6000 ?-> this is in seconds. User will be banned 6000 seconds.

    Next command (use telnet):
    nano /etc/fail2ban/filter.d/cccam.conf

    Add this into cccam.conf file:

    # Fail2Ban configuration file
    #
    # Author: Cyril Jaquier
    #
    # $Revision: 510 $
    #

    [Definition]

    # Option: failregex
    # Notes.: regex to match the password failures messages in the logfile. The
    # host must be matched by a group named ?host?. The tag ?? can
    # be used for standard IP/hostname matching and is only an alias for
    # (?:::f{4,6}?(?P\S+)
    # Values: TEXT
    #
    failregex = Connection from IP: Login Failed!

    # Option: ignoreregex
    # Notes.: regex to ignore. If this regex matches, the line is ignored.
    # Values: TEXT
    #
    ignoreregex =

    Next command is:
    /etc/init.d/fail2ban restart

    Last command is:

    chkconfig ?levels 235 fail2ban on

    With this command fail2ban will start automatically.
Working...
X