ConfigServer Firewall VS Suricata

ConfigServer Firewall Reviews

Suricata Reviews

ConfigServer Firewall mentions (5)

• How to use efficiently IPSET with CSF Firewall

  In this post we will discuss how to use efficiently IPSET with CSF (ConfigServer Security & Firewall) Firewall. Unfortunately, I will not discuss what CSF is because it's not within the scope, but you can read about it here. - Source: dev.to / about 2 months ago

• cPanel license add-ons - worth it?

  At the very least, the free ConfigServer CSF is a more robust firewall addon that blocks brute force attempts, mod security failures, and so on. It's relatively easy to install, has a ton of options, and it's easy to whitelist IPs if your users have trouble. The same dev has a virus & malware scanner that's available as a one-time purchase. Source: about 1 year ago

• Hetzner would be the best host

  Use CSF (linux only) to cut down some basic attacks https://configserver.com/configserver-security-and-firewall/. Source: over 1 year ago

• Firewall Management

  Seems like a GUI wrapper (other than the graphs) so may not solve the OPs issue of things like Docker complicating the firewall. Source: over 1 year ago

• Do Windows and Router firewall enough for protection?

  You should not have ANY ports on the home network open to the outside. NONE. If you insist on running a public-facing service at home, use a VPS with an ARGO tunnel. No SQL ports should be open to anywhere, not even on a private net. Use SSH tunnels to access if needed. As long as everything is closed to the outside, a consumer-grade firewall, along with every node on the home network protected by Configserver... Source: over 2 years ago

Suricata mentions (12)

• Who does check linux distros of malware - open source

  Linux has (free) tools to improve security and detect/remove malware: Lynis,Chkrootkit,Rkhunter,ClamAV,Vuls,LMD,radare2,Yara,ntopng,maltrail,Snort,Suricata... Source: 5 months ago

• Risks of hosting a website out of my house

  Monitoring & Active Measures - Exporting firewall events to an external time-series database like I describe above is good to see who is touching your firewall or accessing your web site. Using an Intrusion Detection System / Intrusion Prevention System (IDS/IPS) such as open-source Suricata, which is a free package on pfSense, and deploying file system integrity monitoring, such as the open-source Wazuh on the... Source: 6 months ago

• Server Hardening

  Active Measures - Includes (IDS/IPS) such as open-source Suricata or Snort on pfSense, and File Integrity Monitoring (FIM), such as the commercial Tripwire and dated, open-source Tripwire, or the open-source Wazuh installed on servers. These can be combined into a Security Information and Event Management (SIEM) system like the open-source solution, Security Onion. Wazuh itself has evolved into a SIEM. Source: over 1 year ago

• Help with server build

  Active measures may include an intrusion detection system / intrusion prevention systems (IDS/IPS) such as open-source Suricata on the firewall, and installing file system integrity monitoring, such as the open-source Wazuh on the exposed server. These are combined in one open-source solution, Security Onion. Source: over 1 year ago

• Would love a guide to Unifi Threat Management similar to your "Advanced Wifi Settings" Guide

  Thanks! Was there something in particular you were wondering about? The built-in IDS/IPS is just Suricata under the hood - https://suricata.io/. Source: over 1 year ago