I have put off ConfigServer Security & Firewall for sometime as I found it to be unreliable in the earlier builds. I had tested it in the past week to find it not only stable now, but quite impressive in its feature set. It's LFD module functions are wonderful. The modsec deny block is a fantastic feature which takes care of the bots and script kiddies attempting to attack your server with one attempt after another. The mass IP connection block (@ 200) is another feature I enjoy. Another plus is the process load killer. From time to time we have developers raining down the load on the server's processor in a jail shell connection using it to develop more than we would prefer and this takes care of that as well. The easy to utilize WHM interface is a plus and saves time from SSH when I need to add or deny an IP @ the firewall. After a week of testing and tweaking I am proud to say we have ConfigServer Security & Firewall running successfully on four of our production servers and will be upgrading more after one more week. It has been an excellent replacement for APF and BFD. Thanks for the great contribution Jon!