[Solved] ModSecurity: Failed connect to waf.comodo.com

serpent_driver

Well-Known Member
#1
It is the second day when WHM/cPanel is unable to add Commodo vendor while nightly updates. Host waf.commodo.com seems to be down. Who is responsible for this issue?

Code:
[2020-12-08 05:40:37 +0100] warn [modsec_vendor] The system could not add the vendor: The system could not download the file “https://waf.comodo.com/doc/meta_comodo_litespeed.yaml”: curl: (7) Failed connect to waf.comodo.com:443; Connection timed out


 at /usr/local/cpanel/Whostmgr/ModSecurity/VendorList.pm line 221.

    Whostmgr::ModSecurity::VendorList::add("https://waf.comodo.com/doc/meta_comodo_litespeed.yaml", CODE(0x22e0b10)) called at /usr/local/cpanel/Whostmgr/ModSecurity/VendorList.pm line 303

    eval {...} called at /usr/local/cpanel/Whostmgr/ModSecurity/VendorList.pm line 296

    Whostmgr::ModSecurity::VendorList::update("https://waf.comodo.com/doc/meta_comodo_litespeed.yaml", 1) called at /usr/local/cpanel/scripts/modsec_vendor line 208

    eval {...} called at /usr/local/cpanel/scripts/modsec_vendor line 208

    scripts::modsec_vendor::update("--auto") called at /usr/local/cpanel/scripts/modsec_vendor line 48

    scripts::modsec_vendor::run("update", "--auto") called at /usr/local/cpanel/scripts/modsec_vendor line 27

[2020-12-08 05:40:37 +0100] info [modsec_vendor] Restored modsec_cpanel_conf_datastore backup

[2020-12-08 05:40:37 +0100] warn [modsec_vendor] The system failed to update the vendor from the URL “https://waf.comodo.com/doc/meta_comodo_litespeed.yaml”: The system could not download the file “https://waf.comodo.com/doc/meta_comodo_litespeed.yaml”: curl: (7) Failed connect to waf.comodo.com:443; Connection timed out

 at /usr/local/cpanel/scripts/modsec_vendor line 218.

    scripts::modsec_vendor::update("--auto") called at /usr/local/cpanel/scripts/modsec_vendor line 48

    scripts::modsec_vendor::run("update", "--auto") called at /usr/local/cpanel/scripts/modsec_vendor line 27
 

Unique_Eric

Administrator
Staff member
#2
The domain name is comodo, so I think they are the owner.

Code:
curl -I -m 10 https://waf.comodo.com/
curl: (28) Connection timed out after 10001 milliseconds
 

serpent_driver

Well-Known Member
#3
Okay, but LiteSpeed promotes Comodo WAF and rules set seems to be setuped by LiteSpeed. (meta_comodo_litespeed.yaml) LiteSpeed WAF needs rules sets to work, but if there is none LiteSpeed WAF doesn't work (anymore).

I already checked comodo website for any informations about WAF, but there is nothing. Has LiteSpeed a better relation to Comodo to ask Comodo why this host is down?
 
Top