ffeingol

Well-Known Member
PartnerNOC
Nov 9, 2001
225
2
318
cPanel Access Level
DataCenter Provider
We've looked at Imunify360 several times, but so far have passed. From the last time we looked, I'd have a hard time calling it a firewall. By default it allows all traffic and then you block what you don't want. Every firewall I've dealt with works the opposite. Everything is denied by default and then you open what you want. I've seen this request on the Imunify360 forum, but it was old and not acted on.

@Jean Boudreau how does Imunify360 and CSF work together in your experience? From what we've been able to see the Imunify360 WAF won't add rules to CSF so I'm having a hard time seeing how it adds value?

TIA
 

LucasRolff

Well-Known Member
May 27, 2013
124
71
28
cPanel Access Level
Root Administrator
how does Imunify360 and CSF work together in your experience? From what we've been able to see the Imunify360 WAF won't add rules to CSF so I'm having a hard time seeing how it adds value?
CSF doesn't manage WAF, mod_security does. Imunify360 adds its rules, and evaluate them based on a number of conditions, and will block things in iptables if rules have a high severity.

Additionally, Imunify360 takes over the blocking of of IPs that CSF usually does (thanks to a hook system) - but CSF will still be the one deciding which default iptables rules you have in place for port blocking, default policies etc.

We use Imunify360 on all servers, and the main benefits I find other than the malware scanner (which is absolutely amazing), is the fact that requests are blocked a bit more intelligently than it would normally be the case when using CSF directly for example.

Just because a mod_security rule exists, doesn't mean it should block the IP for example, or prevent the request - and Imunify360 is rather good at determining this.

Additionally, they're moving away from IP blocks and will instead implement RBLs for various things - e.g. if you deal with people on NAT, then blocking IPs make no sense.
 
  • Like
Reactions: cPanelLauren