CSF It is a free firewall for the Linux system developed by a small foreign company. It works based on iptables and can effectively relieve the pressure on the server. It has the functions of automatically shielding violent password cracking IP, managing open ports, immunizing lightweight DDos and CC, etc. At the same time, it is also very simple to install and use. There are graphical operation interfaces on our commonly used DA and CP panels, It also supports individual ordinary users to install in the LNMP environment.
install CSF
Perform the following steps to install:
rm -fv csf.tgz wget http://www.configserver.com/free/csf.tgz tar -xzf csf.tgz cd csf sh install.sh
Detect iptalbes module:
perl /etc/csf/csftest.pl
If APF was previously installed, uninstall it:
sh /etc/csf/remove_apf_bfd.sh
After execution, your CSF is installed. The above installation steps are applicable to the LNMP environment and under the DA and CP panels.
[Note] The LNMP environment may require dependent packages: yum install perl libwww perl perl iptables
From the official address: The following installation steps are from the official address: http://www.configserver.com/free/csf/install.txt
Configure CSF
To configure CSF, let's first install the CSF Configuration situation.
CSF configuration file address:/etc/csf/csf.conf
White list:/etc/csf/csf.allow
Blacklist:/etc/csf/csf.deny
The main configuration information includes the opening of common ports in csf.conf. After all settings are completed, the test mode will be closed( TESTING = "0" ).
Under the WHM/CP panel, log in to WHM, plug-ins, CSF Security&Firewall configuration information.
Similar to the DA panel, directly log in to the DA administrator side, select CSF Security&Firewall to enter the graphical interface settings.
Uninstall CSF
To uninstall CSF, perform the following steps.
Uninstall in LNMP environment
cd /etc/csf
sh uninstall.sh
WHM/CP unloading
cd /etc/csf
sh uninstall.sh
DA unloading
cd /etc/csf
sh uninstall.sh
Pay special attention to the above tests and commands under CentOS. Please refer to the official information for detailed settings.
Statement: Blogs are only for sharing information and are not recommendations. Websites do not participate in transactions and are not intermediaries. The content only represents personal views and is not authoritative. Readers should consider it and take their own risks! Every penny and every commodity is still the eternal truth. Juvenile readers (including physical and psychological) should visit this website with their guardians! This article is written by( Zhao Rong )Original compilation, reprint, please keep the link: CSF: Linux system free firewall The code is not easy, please do not copy or paste! About using: This website mainly shares server and VPS information, and does not provide any product sales or purchase. All visitors please purchase and use products within the scope of national laws and regulations. QQ group discussion: 683851361 About safety: Any IDC has the possibility of going bankrupt and running away. The host line is even more uncontrollable. Monthly payment and backup are your best choices. Please keep good and regular backup habits