Install and configure csf on CentOS the following steps as root user
1: Downloading csf package.
rm -fv csf.tgz wget http://www.configserver.com/free/csf.tgz
2: Remove already installed firewall settings
Execute the following command to remove already installed firewall like APF (Advanced Policy Firewall) or BFD (Brute Force Detection) from server.
[root@server #] sh /tmp/csf/remove_apf_bfd.sh
3: Installation
[root@server #] tar -xzf csf.tgz [root@server #] cd csf [root@server #] sh install.sh
You will get an output like below pasted if that was a successful installation.
----------------------------
----------------------------
*WARNING* TESTING mode is enabled - do not forget to disable it in the configuration `/etc/csf/csfwebmin.tgz' -> `/usr/local/csf/csfwebmin.tgz' Installation Completed
Then, check whether your server have required IP tables modules by using the following command.
[root@server #] perl /usr/local/csf/bin/csftest.pl
4: Configure CSF
Once the installation process is completed we need to enable the csf to work it properly. ‘csf -e'[csf -x for disabling csf] command is using to enable csf on server.
[root@server csf]# csf -e Starting lfd:[ OK ] csf and lfd have been enabled *WARNING* TESTING mode is enabled - do not forget to disable it in the configuration
The ‘csf -e’ output sounds, the csf is configured in testing mode on your server. You need to edit the conf file for enabling it.
[root@server #] vim /etc/csf/csf.conf Then change the value of 'TESTING' from 1 to 0
Important configuration options
All cofiguration options are located under the directory “/etc/csf” . Some usefull and importent configuration files are listed below.
csf.conf : Configuration file for controlling CSF. csf.allow : Allowed IP’s and CIDR addresses list on the firewall. csf.deny : Denied IP’s and CIDR addresses list on the firewall. csf.ignore : Ignored IP’s and CIDR addresses list on the firewall. csf.*ignore : The list of various ignore files of users, IP’s.
Uninstallation
Removing csf and lfd is even more simple:
cd /etc/csf sh uninstall.sh
That’s all.
As the demand for virtual private servers (VPS) continues to grow, businesses and individuals are faced with a crucial decision:…
Web hosting is a large industry, as many other factors help any web hosting provider to form a company. The…
Welcome to the complete guide to WordPress security best practices in 2024. As technology evolves rapidly, implementing strong security measures…
Hey, wanted to learn about web hosting? Or do you want to start a new website and need hosting? Questions…
In today's digital world, the threat of DDoS attacks has become increasingly prevalent. These types of attacks have the power…