Download the file:
Unpack the archive:
Navigate to the uncompressed csf directory:
Run the installer:
This will create a configuration file and add all required cPanel services to the allow list.
Your next step is to disable testing mode by editing main CSF configuration file. Open the file using any editor (vi, nano, etc):
Scroll down and find: TESTING = “1” and change to TESTING = “0”
Note: Keep the quotations (“”) enclosing the number when making changes.
To save, press ‘Ctrl O’.
Hit ‘Enter’ when your screen asks “File Name to Write: /etc/csf/csf.conf”.
Next, hit ‘Ctrl X’ to exit.
When done, restart CSF:
Now CSF is installed and ready. You can simply manage it via cPanel WHM interface
WHM > Config Security & Firewall.OR via command-line:
ALLOW / BLOCK IP with CSF:
In the event that you need to allow/block IP address using command line, the options are as follows:
To add your IP address to a permanent allow list:
To block the IP:
To clear blocked IPs:
Via Command line you can type: csf -[option]
Commands to know:
cd = change directory
cd ../ = change up a directory
wget = fetches a download link
tar = tar is to uncompress archived files
csf = run commands for the csf firewall followed by an option
ls = list, which shows the contents in the directory you’re in.
pwd = shows the directory you’re currently in.
For more information about CSF, see: http://configserver.com/cp/csf.html
For more information about Basic linux Commands