Installing Config Server Firewall (CSF) on Debian / Ubuntu

featured image

 

Config Server Firewall ConfigServer and Security firewall, abbreviated CSF, is an open source and advanced firewall designed for Linux systems. Not only does it provide basic firewall functionality, but it also offers a wide range of advanced features such as logon / intrusion detection, exploit scans, death protection ping, and more.

[ You might also like: 10 Useful Open Source Security Firewalls for Linux Systems ]

In addition, it also provides interface integration with widely used control panels such as cPanel, Webmin, Vesta CP, CyberPanel and DirectAdmin. For a complete list of supported features and operating systems, visit ConfigServer’s official website.

In this guide, we will guide you through the installation and configuration ConfigServer Security & Firewall (CSF) on Debian and Ubuntu.

Step 1: Install CSF Firewall on Debian and Ubuntu

First, you need to install some dependencies before you start the installation CSF party wall. Update the package directory in your terminal:

$ sudo apt update

 

Next, install the dependencies as shown:

$ sudo apt install wget libio-socket-ssl-perl git perl iptables libnet-libidn-perl libcrypt-ssleay-perl  libio-socket-inet6-perl libsocket6-perl sendmail dnsutils unzip

Once it’s out of the way, you can move on to the next step.

Since CSF not included by default Debian and Ubuntu archives, you need to install it manually. Please continue downloading CSF tarball, which contains all the installation files with the following wget command.

$ wget http://download.configserver.com/csf.tgz

This will download the compressed file named csf.tgz.

Download Config Server Firewall
Download Config Server Firewall

Next, extract the compressed file.

$ tar -xvzf csf.tgz

This will create a folder named csf.

$ ls -l
Config Server Firewall Files
Config Server Firewall Files

Go to the next step csf folder.

$ cd csf

Then install CSF Firewall by running the displayed installer.

$ sudo bash install.sh

If all went well, you should get the result as shown.

Install Config Server Firewall
Install Config Server Firewall

In this situation, CSF has been installed. However, you need to make sure that the required iptables are loaded. To do this, run the command:

$ sudo perl /usr/local/csf/bin/csftest.pl
List the CSF Iptables rules
List the CSF Iptables rules

Step 2: Configure the CSF firewall in Debian and Ubuntu

Some additional configuration is needed Next, we need to change a few settings to enable them CSF. So head towards csf.conf settings file.

$ sudo nano /etc/csf/csf.conf

Edit TESTING help from “1” towards “0” as shown below.

TESTING = "0"
Disable CSF testing
Disable CSF testing

Set next RESTRICT_SYSLOG guide “3” to restrict rsyslog / syslog access to members only RESTRICT_SYSLOG_GROUP.

RESTRICT_SYSLOG = "3"
Restrict the use of CSF Rsyslog
Restrict the use of CSF Rsyslog

Next you can open TCP and UDP searching for gates TCP_IN, TCP_OUT, UDP_IN, and UDP_OUT Directive.

By default, the following ports are opened.

TCP_IN = "20,21,22,25,53,80,110,143,443,465,587,993,995"

TCP_OUT = "20,21,22,25,53,80,110,113,443,587,993,995"

UDP_IN = "20,21,53,80,443"

UDP_OUT = "20,21,53,113,123"
Open the CSF ports
Open the CSF ports

You may not have to open all the ports, and best server practices require that you only open the ports that you use. We recommend that you delete any unnecessary ports and leave the ones used by the services on your system.

Once you have configured the ports you need, reload CSF as shown.

$ sudo csf -r

To list all the IP table rules assigned to the server, run the command:

$ sudo csf -l

You can start and enable CSF firewall at startup as follows:

$ sudo systemctl start csf
$ sudo systemctl enable csf

Then make sure the firewall is running:

$ sudo systemctl status csf
Check CSF status
Check CSF status

Step 3: Block and allow IP addresses in the CSF firewall

One of the most important functions of a firewall is the ability to allow or block IP addresses from accessing the server. With CSF, you can add to the whitelist (allow), black list (prohibit) or bypass IP addresses by editing the following configuration files:

  • csf.allow
  • csf.deny
  • csf.ignore

Block the IP address in the CSF

To block the IP address, use csf.deny settings file.

$ sudo nano /etc/csf/csf.deny

Then specify the IP addresses you want to block. You can configure IP addresses line by line as shown:

192.168.100.50
192.168.100.120

Or you can use CIDR entry to block the entire subnet.

192.168.100.0/24

Allow IP address in CSF

To allow an IP address through Iptables and exclude it from all filters or blocks, edit csf.allow settings file.

$ sudo nano /etc/csf/csf.allow

You can list the IP address per line or use CIDR address, as previously shown when blocking IP addresses.

NOTE: An IP address is allowed even if it is specified csf.deny settings file. To make sure an IP address is blocked or blacklisted, make sure it is not listed csf.allow file.

Exclude the IP address from the CSF

In addition, CSF allows you to exclude an IP address from IP tables or filters. Any IP address csf.ignore the file is released from the iptables filters. It can only be blocked if specified in csf.deny file.

To exclude an IP address from filters, open csf.ignore file.

$ sudo nano /etc/csf/csf.ignore

Once again, you can list IP addresses line by line or use CIDR entry.

Conclusion

And this concludes our guide today. We hope you can now install and configure CSF firewall without bugs.

https://www.swxbt.com/installing-config-server-firewall-csf-on-debian-ubuntu/

Comments

Post a Comment

Popular posts from this blog

How to install the latest XFCE Desktop on Ubuntu and Fedora

Image
  Xfce is a modern, open source and lightweight desktop environment for Linux systems. It also works well on many other Unix-type systems, such as Mac OS X, Solaris, * BSD, and many others. It is fast and also user friendly with a simple and stylish interface. [ You might also like: 13 Open Source Linux Desktop Environments of All Time ] Installing a desktop environment on servers can sometimes prove useful, as certain applications may require an efficient and reliable management of the desktop interface. One of the significant features of Xfce is its low use of system resources, such as low RAM usage, making it a recommended desktop server environment when needed. XFCE desktop features In addition, some of its significant components and features are listed below: xfwm4 Windows Manager Thunar file management User session management to handle logins, power management and more Desktop manager for setting wallpaper, desktop icons and many more Application management It is al
Read more

Five of the most beautiful cases for the Galaxy S21, S21 + and S21 Ultra

Image
Samsung’s top three Galaxy S21 phones are already several months old and seem to be huge success. We’ve even gone so far as to say that the S21 is a 2021 smartphone that should outperform (for now), while the S21 Ultra is just a very good phone. Like any great device, the S21 in your hands deserves quality protection. These are our five favorite cases for the Galaxy S21, S21 +, and S21 Ultra. Best Custom Case: dbrand Grip (Recommended) Dbrand’s Grip is still an AP favorite with dozens of ways to make your phone say “this is my phone” without, say, unfortunate accident at the smelting … We have an iconic (literally) limited edition Skin icons on our purple Galaxy S21 here and it’s a subtle matte black color. But dbrand has a variety of options to suit all tastes, and you can even order a separately protected Grip case if you want. We’re just saying: This case looks best with a skin and it’s kind of a brandy thing. Best durable, but not overly large case: Otterbox Symmetry If
Read more

Yacine TV Apk, What is it?

Image
  Yacine TV is one of the streaming applications for watching football that is currently widely used by football lovers. And as you know, the streaming application for watching football is one of the applications that is in great demand. Actually, there are lots of football streaming applications that can be used for free. And these various applications have different advantages and disadvantages. Usually, this football streaming application provides lots of football matches that many netizens have been waiting for. Like the Champions League, which is still ongoing for you to watch. And indeed there are many other football matches for you to watch and no less fun. This Yacine TV application provides a large collection of international leagues that you can access for free. And indeed there are many other interesting content that you can get. This application is also a popular application and is widely used by users. With this application, you can watch football shows that many hav
Read more