Do I need to install Config Firewall if WHM already have CPHulk Brute Force Protection ?

calvinphanctt

• November 26, 2014 20:17

Hello everyone, How are you doing? Do I need to install Config Firewall if WHM already have CPHulk Brute Force Protection ? Sincerely, Calvin

• 

  24x7ss

  • November 27, 2014 05:11

  Yes, csf firewall provide much security to your server. If you want to block any particular country then you can use csf firewall. Attacks like portflood, SYN, FYN attack csf firewall is useful.

  0
• 

  keat63

  • November 27, 2014 08:29

  I also wondered the same thing. I'm pretty sure that I blocked all IP's (except a few) in CPHULK, but still managed to successfully log in to WHM, from an unknown IP. Although, i've done so much experimenting recently, i may be mistaken. I put this down to the fact that, it was first time single successful login, so wasn't categorised as a brute force attack. I assume a brute force attack would be multiple failed logins. I then configured Host access in WHM to only allow 2 IP's and my test IP fails even with a single login attempt.

  0
• 

  mageshm

  • November 27, 2014 09:02

  @ keat63, Yes, exactly right. If you configured Host access to particular IP and you can't login to ssh using other IP's except allowed host IP's but CSF giving more features. Install and feel the security. If you are using cPanel/WHM 11.46, i advise you to check "cPanel Security Advisor" option because this also giving some protection to server.

  0
• 

  keat63

  • November 27, 2014 11:46

  I've just installed CSF, but now this is something extra for me to try and figure out how it works. I'll leave this on the default settings until i get a chance to play.

  0
• 

  keat63

  • November 27, 2014 13:44

  Calvin. Installing CSF is really easy. Copy and paste the following in to your SSH terminal. rm -fv csf.tgz wget http://www.configserver.com/free/csf.tgz tar -xzf csf.tgz cd csf sh install.sh It will appear as a plugin at the bottom of WHM. CSF is quite indepth and complex though, so we will no doubt be back here for more assistance.

  0
• 

  cPanelMichael

  • December 16, 2014 14:33

  Hello :) Yes, it's a good idea to install a firewall management utility such as CSF. While cPHulk is helpful, it's not intended as a replacement for a firewall. Thank you.

  0

Please sign in to leave a comment.