ConfigServe Firewall, also known as CSF, is a firewall configuration script created to provide better security for your server while giving you an easy to use, advanced interface for managing your firewall settings.

CSF configures your server’s firewall to lock down public access to services and only allow certain connections, such as logging in to FTP, checking your email, or loading your websites. ConfigServe Firewall also comes with a service called Login Failure Daemon, or LFD. LFD watches your user activity for excessive login failures which are commonly seen during brute force attacks. If a large amount of login failures are seen coming from the same IP address, that IP will immediately be temporarily blocked from all services on your server. These IP blocks will automatically expire, however they can be removed manually through the ConfigServer interface in WebHost Manager.

In addition to removing IPs, CSF also allows you to manually whitelist or blacklist IPs in your firewall, as well as real time monitoring for automatic IP blocks in LFD. This is covered in Managing Your CSF Firewall.

We will install CFS on your server if not already present (replacing any other sw firewall installed) or if already installed properly configure the system.

This comprehensive cPanel server service can be provided for most Linux (not FreeBSD) platforms running cPanel. We will perform the installation, configuration and testing of each component of the service in close cooperation of the professionals of Configserver and we will tweak the settings after our partner has finished their part of nthe service. . We do not use scripts to perform this work (as some providers do) but perform each task by hand to ensure it is correctly installed and configured to your servers requirements.

The aim of this work is to help:

• Secure your server from attack
• Perform server tuning to better cope under load
• Provide relevant regular information from your server to identify any security breaches or anomalous behaviour
• Check for existing exploits installed or running on the server

CSM allows you for the server to control how the email is scanned for spam and viruses. This application provides a user front-end to a MailScanner installation on cPanel. It consists of three parts:

I.  A front-end that becomes part of the cPanel theme. This allows users to maintain their own settings, via a script, that modifies a text file stored in their cPanel account. It also allows users to configure:

• Per domain actions for two score levels for spam scanning
• Per domain actions for virus scanning
• Per cPanel account whitelists and blacklists
• Per cPanel account low and high score settings
• Per cPanel account configurable forwarding email address for spam

Configserver provides a couple of add-ons that will help in several area;s:

I. Mod_Security Control (CMC)

The product provides you with an interface to the cPanel mod_security implementation from within WHM. With ConfigServer ModSecurity Control you can:

• Disable mod_security rules that have unique ID numbers on a global, per cPanel user or per hosted domain level
• Disable mod_security entirely, also on a global, per cPanel user or per hosted domain level
• Edit files containing mod_security configuration settings in /usr/local/apache/conf
• View the latest mod_security log entries

The product provides you with a full featured interface to the cPanel exim email queues from within WHM.

The ConfigServer Mail Queues can be an essential tool for:

• Determining why inbound or outbound email delivery is failing
• Deleting bounce emails
• Deleting frozen (undeliverable) emails
• Forcing queue runs (especially useful for Smart Router emails to Exchange servers that are intermittently online)
• Integrates with MailScanner, if installed, to offer views/deletion of email in both the Pending and Delivery queues
• Searching for and viewing/deleting emails to/from specific domains and addresses
• Viewing the email history from the exim mail logs for specific emails
• Retry delivery for specific emails

The product provides you with an interface to the cPanel user accounts email configuration without having to login to their accounts. It is domain based rather than account based and allows you to do all the following from within WHM:

• View, edit and delete email accounts
• View, edit and delete email forwarders
• View, edit and delete email filters
• View and modify email account quotas
• Modify email account passwords
• Modify Outgoing Mail Hourly Limits
• List only email accounts that are overquota (or over a specified percentage)
• List only email accounts that are over a specified size
• View the total number of emails in an email account
• Empty an email account
• View emails in an email account
• Individually delete emails in an email account
• View, enable and disable GreyListing in bulk and per domain