cPHulk help newbie Apply protection to local and remote addresses

[FUNKAM55]

Hi, I am a newbie to cPHulk and need some help with the settings.
I have enabled it on VPS

Please can someone explain in very simple terms (I do not understand exaclty the cpanel documentation on this) the difference between:

Apply protection to local addresses only
and
Apply protection to local and remote addresses

Which do I need

I'm receiving several alerts where it seems hackers are attempting to login and all seem to be using

Service: ​

pure-ftpd

and trying common usernames, none of which I have

Thanks

 

[retechpro]

Change your default port and disable direct root login to secure your vps.
Also install firewall on your vps.

For more info see cpanel documentation

 

[cPRex]

Here is the information on that setting:

cPHulk Brute Force Protection | cPanel & WHM Documentation

This interface allows you to configure cPHulk, a service that provides protection for your server against brute force attacks.

docs.cpanel.net

• Apply protection to local addresses only — Limit username-based protection to trigger only on requests that originate from the local system. This ensures that a user cannot brute force other accounts on the same server. This is the default setting.
• Apply protection to local and remote addresses — Allow username-based protection to trigger for all requests, regardless of their origin.

This specifically applies to the username-based protection section, which is described as this:

Username-based Protection — Whether to enable the username-based protection settings. Set the toggle to On to enable the Username-based Protection setting. Username-based protection tracks login attempts for user accounts. When you disable cPHulk, existing account locks will remain. This setting defaults to On.

If you're getting a lot of remote attempts, you could switch it to the "local and remote" option.