The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

looking for firewall, csf not working

Discussion in 'General Discussion' started by SoftDux, Apr 6, 2008.

  1. SoftDux

    SoftDux Well-Known Member

    Joined:
    May 27, 2006
    Messages:
    983
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Johannesburg, South Africa
    cPanel Access Level:
    Root Administrator
    Hi all

    I have tried Config Server Firewall, but after a server reboot, the VPS wouldn't be accessible, and I get the following error:

    Code:
    iptables: Unknown error 18446744073709551615 - no network connectivity
    So, can someone please recommend another firewall to use with cPanel?
     
  2. brianoz

    brianoz Well-Known Member

    Joined:
    Mar 13, 2004
    Messages:
    1,146
    Likes Received:
    6
    Trophy Points:
    38
    Location:
    Melbourne, Australia
    cPanel Access Level:
    Root Administrator
    Have you got the monolithic option enabled in CSF? That's required for operation with VPS systems.

    Another possible firewall is APF, but CSF is about a 100 miles ahead of APF, so if you can, stay with CSF. (it's regularly maintained, and has a lot more security features).

    On a completely unrelated note, I hear the new VPS optimized version of cpanel is pretty hot, you may want to look at that.
     
  3. BianchiDude

    BianchiDude Well-Known Member
    PartnerNOC

    Joined:
    Jul 2, 2005
    Messages:
    619
    Likes Received:
    0
    Trophy Points:
    16
    Does CSF have a brute force detector?

    What else does it have that APF doesn't?
     
  4. RSCChris

    RSCChris Active Member

    Joined:
    Sep 15, 2004
    Messages:
    26
    Likes Received:
    0
    Trophy Points:
    1
    Check the forum post about csf, but yes it has brute force. Advantages? The biggest is its ability to be easily controlled from within WHM. Full list of features here: http://configserver.com/cp/csf.html
     
  5. brianoz

    brianoz Well-Known Member

    Joined:
    Mar 13, 2004
    Messages:
    1,146
    Likes Received:
    6
    Trophy Points:
    38
    Location:
    Melbourne, Australia
    cPanel Access Level:
    Root Administrator
    What does CSF have that APF doesn't?

    • Regular maintenance - updates every month or so, with new features and/or fixes
    • WHM interface (although I think Ryan may have added one to APF)
    • Easy upgrade to the next version from shell or WHM
    • preconfigured ready-to-go on cpanel
    • Suspicious/excessive process reporting
    • Suspicious file reporting
    • Port scan detection and blocking
    • Much better brute force detection and blocking including temporary blocks and the ability to NOT block authenticated POP users

    Some of this may be inaccurate; for the final verdict you'd need to check documentation. For me the first item is the killer - CSF is regularly maintained whereas APF, until recently, hadn't released a new version for for years. Nothing wrong with that - APF was a ground breaker when it first came out, and I used and recommended it then, but I've moved to CSF.
     
  6. ckh

    ckh Well-Known Member

    Joined:
    Dec 6, 2003
    Messages:
    356
    Likes Received:
    1
    Trophy Points:
    18
    Location:
    Phoenix, AZ
    cPanel Access Level:
    DataCenter Provider
    What does CSF have that APF doesn't?

    Geesh, guys, come on. You left out the most important one.

    #1 Chirpy

    :p
     
  7. SoftDux

    SoftDux Well-Known Member

    Joined:
    May 27, 2006
    Messages:
    983
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Johannesburg, South Africa
    cPanel Access Level:
    Root Administrator
    Yes I have.

    But it breaks my CentOS 5.1 x64 server to CentOS 5.1x64 XEN VPS, and apparently it's a OS problem, and nothing todo with CSF. Yet, when I uninstalled it, the VPS is fine. I can't afford to have VPS's going down cause the firewall causes problem.
     
  8. RadioRob1

    RadioRob1 Registered

    Joined:
    Nov 20, 2005
    Messages:
    4
    Likes Received:
    0
    Trophy Points:
    1
    Sounds like a configuration issue.

    Are you sure you're having it check the correct interface? Have you checked to make sure the right modules are loaded? When you load it in dev mode, are you able to create another connection?

    I've had no issues before installing CSF on Centos 4/5... x86 or x86_64 on Xen.
     
  9. SoftDux

    SoftDux Well-Known Member

    Joined:
    May 27, 2006
    Messages:
    983
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Johannesburg, South Africa
    cPanel Access Level:
    Root Administrator
    yes I have the configuration set properly, and the test works fine, but th moment the VPS or server gets rebooted, I have no connection to the VPS. It took me a while to figure out (one of the google search results lead me to the forum threads on configserver.com's website) that CSF is causing the problem, and once I've uninstalled it, the VPS connected to the internet without a problem
     
  10. solder42

    solder42 Registered

    Joined:
    Apr 8, 2008
    Messages:
    1
    Likes Received:
    0
    Trophy Points:
    1
    Yes I am feeling same prpoblem, the thing which you told, I tried that but feeling the same trouble :(
     
Loading...

Share This Page