Categories: cPanel

How to install and configure csf on CentOS

Install and configure csf on CentOS the following steps as root user

1: Downloading csf package.

rm -fv csf.tgz
wget http://www.configserver.com/free/csf.tgz

2: Remove already installed firewall settings

Execute the following command to remove already installed firewall like APF (Advanced Policy Firewall) or BFD (Brute Force Detection) from server.

[root@server #] sh /tmp/csf/remove_apf_bfd.sh

3: Installation

[root@server #] tar -xzf csf.tgz 
[root@server #] cd csf 
[root@server #] sh install.sh

You will get an output like below pasted if that was a successful installation.

----------------------------
----------------------------
*WARNING* TESTING mode is enabled - do not forget to disable it in the configuration `/etc/csf/csfwebmin.tgz' -> `/usr/local/csf/csfwebmin.tgz' Installation Completed

Then, check whether your server have required IP tables modules by using the following command.

[root@server #] perl /usr/local/csf/bin/csftest.pl

4: Configure CSF

Once the installation process is completed we need to enable the csf to work it properly. ‘csf -e'[csf -x for disabling csf] command is using to enable csf on server.

[root@server csf]# csf -e
Starting lfd:[  OK  ]
csf and lfd have been enabled
*WARNING* TESTING mode is enabled - do not forget to disable it in the configuration

The ‘csf -e’ output sounds, the csf is configured in testing mode on your server. You need to edit the conf file for enabling it.

[root@server #] vim /etc/csf/csf.conf
Then change the value of 'TESTING' from 1 to 0

Important configuration options
All cofiguration options are located under the directory “/etc/csf” . Some usefull and importent configuration files are listed below.

csf.conf : Configuration file for controlling CSF.
csf.allow : Allowed IP’s and CIDR addresses list on the firewall.
csf.deny : Denied IP’s and CIDR addresses list on the firewall.
csf.ignore : Ignored IP’s and CIDR addresses list on the firewall.
csf.*ignore : The list of various ignore files of users, IP’s.

Uninstallation
Removing csf and lfd is even more simple:

cd /etc/csf
sh uninstall.sh

That’s all. 

 

Vishwajit Kale
Vishwajit Kale blazed onto the digital marketing scene back in 2015 and is the digital marketing strategist of Hostripples, a company that aims to provide affordable web hosting solutions. Vishwajit is experienced in digital and content marketing along with SEO. He's fond of writing technology blogs, traveling and reading.
View all posts
Tags: Advanced Policy FirewallAPFBFDBrute Force DetectionCentOSconfigurationconfigure csfcpanelcsf packageDownloadinginstallInstallationUninstallation
11 years ago
Leave a Comment

Recent Posts

How to Get More Customer Reviews That Build Trust and Sales?

Customer reviews have become one of the most influential factors in modern buying decisions. Before choosing a product, service, or…

2 days ago

Why Micro-Influencers Matter: How Small Creators Drive Higher Engagement and ROI

In today’s digital landscape, consumers trust people more than brands. Traditional ads are often ignored, celebrity endorsements feel scripted, and…

1 week ago

2026 SEO Roadmap: Skills Every Digital Marketer Must Have

Introduction: SEO in 2026 Is No Longer Optional—It’s Strategic Search Engine Optimization in 2026 has evolved far beyond keywords and…

2 weeks ago

Website Affirmations for 2026: Build, Grow, and Succeed Online

With 2026 just days away, it’s time to reimagine your website’s future. Hostripples encourages businesses, creators, and entrepreneurs to begin…

1 month ago

Cron Jobs: Automate Everything While You Sleep

Cron Jobs – The Unsung Heroes Think of cron jobs as the unsung heroes of your server — capes optional,…

1 month ago

Resources