Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

ConfigServer Firewall vs Juniper SRX 300 with cPHulk

Discussion in 'General Discussion' started by bgarrant, Oct 2, 2018.

  1. bgarrant

    bgarrant Well-Known Member

    Joined:
    Jun 27, 2012
    Messages:
    68
    Likes Received:
    9
    Trophy Points:
    8
    cPanel Access Level:
    Root Administrator
    I have a single cPanel server and it is currently protected by a Juniper SRX 300 Hardware Firewall and CPHulk. I would really like to remove the hardware firewall and go back to use CSF, but I am wondering if anyone can advise on what I would lose or gain in making the change? I know CSF can do a lot more, but do I lose any major security by removing the hardware firewall? Since I have just one shared hosting server the hardware firewall seems like overkill. Any advice?
     
  2. rpvw

    rpvw Well-Known Member

    Joined:
    Jul 18, 2013
    Messages:
    1,088
    Likes Received:
    441
    Trophy Points:
    113
    Location:
    Spain
    cPanel Access Level:
    Root Administrator
    Quite a good article here: bobcares.com/blog/hardware-vs-software-firewall-a-brief-comparison/ that might help you decide.

    Personally, I find the tools that come supplied with cPanel combined with CSF are normally sufficient to keep your server safe (unless you are hosting something contentious or compelling to hackers)

    The resources that a software firewall might consume will depend heavily on the server traffic. You must appraise that yourself since you should know what amount of traffic you get, and what your available resources are.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #2 rpvw, Oct 2, 2018
    Last edited by a moderator: Oct 8, 2018
    cPanelLauren likes this.
  3. bgarrant

    bgarrant Well-Known Member

    Joined:
    Jun 27, 2012
    Messages:
    68
    Likes Received:
    9
    Trophy Points:
    8
    cPanel Access Level:
    Root Administrator
    Thanks for the great info. The issue with the hardware firewall to me is administration. I try to manually allow clients access via FTP and CPanel and then leave web and email ports open. While this works well it is hard to
    Maintain with dynamic IPs constantly changing.
     
  4. cPanelLauren

    cPanelLauren Forums Analyst II Staff Member

    Joined:
    Nov 14, 2017
    Messages:
    5,815
    Likes Received:
    443
    Trophy Points:
    233
    Location:
    Houston
    cPanel Access Level:
    DataCenter Provider
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
Loading...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice