Linux Commands and Scripts

How To Install and Configure CSF (ConfigServer Security & Firewall) on CentOS 7

In this article we will learn to install and configure CSF on CentOS 7

ConfigServer Security & Firewall (it is also called csf in short) is a Stateful Packet Inspection (SPI) firewall, Login/Intrusion Detection and Security application for Linux servers.
To complement the ConfigServer Firewall (csf), is developed a Login Failure Daemon (lfd) process that runs all the time and periodically (every X seconds) scans the latest log file entries for login attempts against your server that continually fail within a short period of time. Such attempts are often called “Brute-force attacks” and the daemon process responds very quickly to such patterns and blocks offending IP’s quickly.

Installation is quite straightforward:

Firstly, we need to install prerequisites, Perl and libwww.

# yum install perl-libwww-perl -y

Now, download CSF

# cd /usr/src
# wget https://download.configserver.com/csf.tgz

Extract it

# tar xzf csf.tgz
# cd csf

Run the installation script

# sh install.sh
# perl /usr/local/csf/bin/csftest.pl

Output:

Install and configure CSF on CentOS 7

This will run the installation script and check all the dependencies are installed and create the necessary directory. Also, test whether you have the required iptables modules.

That’s it. we can then configure csf and lfd

Open config file using your favorite editor

# vim /etc/csf/csf.conf

And change TESTING = “1” to TESTING = “0” or else lfd daemon fail to start. Also, you can allow incoming and outgoing port as per your requirement.

Once your done all the configuration, restart and enable CSF

# systemctl restart csf ; systemctl restart lfd
# systemctl enable csf ; systemctl enable lfd
# systemctl status csf ; systemctl status lfd

Check the version

# csf -v

Output:
csf: v13.08 (generic)

In case you want to allow the incoming connection from an IP address

# csf -a [IP Address]

In case you want to deny the incoming connection from an IP address

# csf -d [IP Address]

To uninstall the CSF completely is very easy:

# cd /etc/csf
# sh uninstall.sh

Today, we’ve learned how our Support Engineers install and configure CSF on CentOS 7 Linux server.

[Need assistance to fix this error or install tools? We’ll help you.]

Related Articles