With CWP you can simply configure CSF/LFD firewall by using CSF Firewall module.
In CWP.admin go to: Left-Menu –> Security –> CSF Firewall
Here you can whitelist, block or unblock IPs.
For additional configuration you can click on Firewall Configuration button and there you can check or edit CSF firewall configuration.
** Don’t forget to restart the firewall after you have made configuration changes!
CSF Firewall Open Ports
Open ports are listed as TCP_IN, TCP_OUT, UDP_IN and UDP_OUT
If you need to open a range of ports, for example from 30000 to 50000, you can do that simply by setting: 30000:50000.
# Allow incoming TCP ports TCP_IN = "20,21,29950,25,53,80,110,143,443,465,587,993,995,2030,2031,30000:50000" # Allow outgoing TCP ports TCP_OUT = "20,21,29950,25,53,80,110,113,443,2030,2031,30000:50000,993,995" # Allow incoming UDP ports UDP_IN = "20,21,53" # Allow outgoing UDP ports # To allow outgoing traceroute add 33434:33523 to this list UDP_OUT = "20,21,53,113,123" # Allow incoming PING ICMP_IN = "1"
How to stop LFD process alerts/notifications
Example alert: Excessive resource usage
Executable: /usr/local/bin/php-cgi Command Line: /usr/local/bin/php-cgi /home/USERNAME/public_html/index.php PID: 23323 (Parent PID:22635) Killed: No
you can simply white list them in your firewall by adding in the file: /etc/csf/csf.pignore
and then restart lfd: “service lfd restart”