CSF firewall commonly known as Configserver Security and Firewall has become one of the popular firewall not just because of its easy of use it also provides a cpanel interface and can be easily installed and tuned by any novice users. If you are running cpanel without firewall then CSF firewall is very much recommended, considering the security aspects of your server.
Important Features WHM Interface for CPanel Firewall Running Status Easy to Install and Administer Brute Force Attack Prevention One Click Server Security Checks Port scan prevention and blocking Intrusion detection system Easy installation and configuration. IP blocking and more.
Installation Steps
1.Download the package here
#wget http://configserver.net/free/csf.tgz
2.untar it #tar -zxf csf.tar.gz
3.Run the Install script.
#sh /csf/install.sh
4.Remove APF or IPTables Firewall if you have any existing IP tables firewall remove them using uninstall scripts located at /etc/csf. In this case I was running APF firewall and BFD in my server so I have to remove it. sh /etc/csf/remove_apf_bfd.sh
5.Start the firewall with the following command.
csf -s // start the firewall
csf -r // restart the firewall
csf -f // flush the rules or stop the firewall.
6.Config Files /etc/csf/csf.conf CSF Firewall configuration file
/etc/csf/csf.allow => Config file to allow IPs
/etc/csf/csf.deny => Config file to deny IPs
/etc/csf/ => Alert files with TXT extension are stored within this directory