Want more timely Centmin Mod News Updates?
Become a Member

Sysadmin Authorize.net can't connect

Discussion in 'System Administration' started by Andy, Jan 5, 2020.

  1. Andy

    Andy Active Member

    460
    73
    28
    Aug 6, 2014
    Ratings:
    +102
    Local Time:
    3:06 PM
    I have a payment gateway via authorize.net that recently failed to connect with these errors messages. I am trying to see if their IP is blocked or something because the file is there.

    The error is
     
  2. eva2000

    eva2000 Administrator Staff Member

    44,417
    10,144
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +15,692
    Local Time:
    5:06 AM
    Nginx 1.17.x
    MariaDB 5.5/10.x
    What does authorize.net or the author of the gateway have to say ?
     
  3. Andy

    Andy Active Member

    460
    73
    28
    Aug 6, 2014
    Ratings:
    +102
    Local Time:
    3:06 PM
    they just asked me to check if the firewall block authorize.net access. I'm not sure the best way to check access log on that specific date and time for any issue. I don't think the log is retained for that long?
     
  4. eva2000

    eva2000 Administrator Staff Member

    44,417
    10,144
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +15,692
    Local Time:
    5:06 AM
    Nginx 1.17.x
    MariaDB 5.5/10.x
    CSF Firewall entries are logged to /var/log/lfd.log for login failure daemon and for others in system /var/log/messages. Do they have a non-standard TCP port for outbound connections on your server to their servers ? If so, then you need to whitelist them in CSF Firewall config file /etc/csf/csf.conf as per https://centminmod.com/csf_firewall.html so for TCP_OUT and TCP6_OUT comma separated list of ports that are to be whitelisted

    So backup /etc/csf/csf.conf and then edit it and then restart CSF Firewall
    Code (Text):
    csf -ra


    The default whitelisted ports are
    Code (Text):
    egrep '^TCP_|^TCP6_|^UDP_|^UDP6_' /etc/csf/csf.conf
    TCP_IN = "20,21,22,25,53,80,110,143,161,443,465,587,993,995,1110,1186,1194,81,9418,30001:50011"
    TCP_OUT = "8080,2525,465,1110,1194,9418,20,21,22,25,53,80,110,113,443,587,993,995"
    UDP_IN = "67,68,1110,33434:33534,20,21,53"
    UDP_OUT = "67,68,1110,33434:33534,20,21,53,113,123"
    TCP6_IN = "20,21,22,25,53,80,110,143,161,443,465,587,993,995,1110,1186,1194,81,9418,30001:50011"
    TCP6_OUT = "8080,2525,465,20,21,22,25,53,80,110,113,443,587,993,995"
    UDP6_IN = "20,21,53"
    UDP6_OUT = "20,21,53,113,123"
    

    Unless you changed them as per https://community.centminmod.com/th...stack-csf-firewall-default-port-listing.5670/