ConfigServer Security & Firewall
Posted by Matthew Jeffels, Last modified by Matthew Jeffels on 20 January 2017 10:15 PM

ConfigServer Security & Firewall

This interface allows you to configure, upgrade, change and enable the server firewalls and security settings.

Server Information

"Check Server Security" This performs basic security and stability setting check on the server

"Firewall Information" This option allows you to view the csf+lsd readme.txt file.

"Watch System Logs" This allows you to watch various system log files found in the csf.syslogs

"Search System Logs" This allows you to search the system log files

"View Listening Ports" This allows you to view the ports on the server that have a process running behind them listening for external connections

"Check for IP's in RBLs" This allows you to check whether any of the versions of the sers IP addresses that are listed in the RBLs

"View iptables Log" This allows you to view the last 100 iptable log lines

"View lfd Statistics" This allows you to view the lfd blocking statistics 

"View System Statistics" This allows you to view the basic system statistics

Upgrade - This will allow you to upgrade your version of the csf if a new version is available.

Config Server Firewall

"Firewall Configuration"  This allows you to edit the configuration file for the csf firewall.

"Firewall Profiles" This allows you to Apply a pre-configured csf.conf profiles and backup/restore csf.conf

"View iptable Rules" This allows you to view

"Quick Allow" This allows you to add an IP address through the firewall and append a comment 

"Quick Deny" This allows you to quickly block an IP address from passing through the firewall and append a reason.

"Quick Ignor" This allows you to quickly add an IP address 

"Quick Unblock" This allows you to quickly unblock an IP address

"Firewall Allow IPs" This allows you to edit the csf.allow which is the IP address allow file.

"Firewall Deny IPs" This allows you to edit the csf.deny file which is the file that contains blocked IP's.

"Firewall Enable" This allows you to enable the csf and lfd if it has been previously disabled

"Firewall "Disable" This allows you to completely disable the csf and lfd.

"Firewall Restart" This allows you to restart the csf iptables firewall.

"Firewall Quick Restart" This allows you to have the lfd restart the iptables firewall.

"Temporary Allow/Deny" This allows you to temporarily block or allow an IP for a period of time as well as append a comment to it.

"Temporary IP Entries" This allows you to view and remove the temporary IP entries.

"Search for IP" This allows you to search the iptables for a specific IP.

"Deny Server IPs" This allows you deny access to and from specific IP addresses configured on the server.

"Flush all Blocks" This allows you to remove and unblock all entries in the csf.deny excluding those that have the "Do not delete" mark, and removes all temporary IP entries.

"Firewall Redirect" This allows you to redirect traffic to this server to other ports and IP addresses.

Login Failure Daemon

"lfd Status" This allows you to view the lfd status.

"lfd Restart" This allows you to restart the lfd

"Edit .ignore files" This allows you to edit the lfd ignore files, there are many diffrent types that can be selected from the drop down options menu.

"lfd Directory File Watching" This option allows you to edit the Directory File Watching file csf.dirwatch. All the files listed are the files and directories that will be watched for changes.

"lfd Dynamic DNS" This allows you to edit the dynamic DNS file csf.dydns all of the listed domains will then be configured to be allowed through the firewall

"Edit Email responce templates" This allows you to edit all the diffrent email alert templates, Select the template from the dropdown then select edit to change the template.

"lfd Log Scanner Files" This allows you to edit the log scanner file csf.logfiles as well as scan listed log files for log lines and periodically send reports to you

"lfd Blocklists" This allows you to edit the Blocklist configuration file csf.blocklists

"lfd Syslog Users" This allaws you to edit the syslog/rsylog allowed user files.

Other

"Edit Reseller Privs" This allows you to assign privileges to a cPanel Reseller by editing the csf.resellers file. 

"Test iptables" This allows you to check that the iptables have the required modules to run csf.

Thanks

Matt Jeffels
PAC web Hosting

(0 vote(s))
Helpful
Not helpful

Comments (0)