Phone : 00212625597419
Knowledgebase

How to Install ConfigServer Firewall (CSF)



Installation is quite straightforward:

rm -fv csf.tgz
wget http://www.configserver.com/free/csf.tgz
tar -xzf csf.tgz
cd csf
sh install.sh

Next, test whether you have the required iptables modules:

perl /usr/local/csf/bin/csftest.pl

Don't worry if you cannot run all the features, so long as the script doesn't
report any FATAL errors

You should not run any other iptables firewall configuration script. For
example, if you previously used APF+BFD you can remove the combination (which
you will need to do if you have them installed otherwise they will conflict):

sh /usr/local/csf/bin/remove_apf_bfd.sh

Open the file using any editor (vi, nano, etc):

nano /etc/csf/csf.conf

and change

TESTING = “1″

to
TESTING = “0″

When done, restart CSF:

csf -r

That's it. You can then configure csf and lfd by reading the documentation and
configuration files in /etc/csf/csf.conf and /etc/csf/readme.txt directly or
through the csf User Interface.

Now CSF is installed and ready. You can simply manage it via cPanel WHM interface WHM > Config Security & Firewall

You may want to visit “Check server security” page next, allow/block IP addresses, flush blocks, restart login failure daemon and much more.

You should ensure that kernel logging daemon (klogd) is enabled. Typically, VPS
servers running RedHat/CentOS v5 have this disabled and you should check
/etc/init.d/syslog and make sure that any klogd lines are not commented out.

If you change the file, remember to restart syslog.




Was this answer helpful?

Add to Favourites Add to Favourites

Print this Article Print this Article

Also Read

Language: