wget https://download.configserver.com/csf.tgz tar -xzf csf.tgz cd csf sh ./install.sh
vi /etc/csf/csf.conf
Make sure testing is off:
TESTING = "0"
Integrate with DirectAdmin Brute Force Monitor:
cd /usr/local/directadmin/scripts/custom/ wget -O block_ip.sh http://files.plugins-da.net/dl/csf_block_ip.sh.txt wget -O unblock_ip.sh http://files.plugins-da.net/dl/csf_unblock_ip.sh.txt wget -O show_blocked_ips.sh http://files.plugins-da.net/dl/csf_show_blocked_ips.sh.txt chmod 700 block_ip.sh show_blocked_ips.sh unblock_ip.sh
touch /root/blocked_ips.txt touch /root/exempt_ips.txt
Restart ConfigServer Firewall:
/usr/sbin/csf -s
Whitelist download.configserver.com:
85.10.199.177
Enable updates:
yum install perl-Crypt-SSLeay perl-Net-SSLeay yum install perl-LWP-Protocol-https
Update ConfigServer Firewall:
/usr/sbin/csf -u