We are happy to announce that Vesta is back under active development as of 25 February 2024. We are working on Vesta 2.0 and expect to release it by the end of 2024. Read more about it: https://vestacp.com/docs/vesta-2-development
[HOWTO] Install CSF + Use it's GUI in VestaCP
Re: [HOWTO] Install CSF + Use it's GUI in VestaCP
Try this command:cvondra wrote: ↑Thu May 30, 2019 3:17 amHaving an issue. When in the main/first page of CSF when attempting to "View lfd statistics"
I get broken images and no graph.
https://ibb.co/cg2LTfY
I'm on CentOS 7/PHP7.2+NGINX and I have GDGraph and GDGraph3D installed.
Any help would be greatly appreciated.
Thanks.
Code: Select all
chmod 0644 /usr/local/vesta/web/list/csf/lfd_*
Re: [HOWTO] Install CSF + Use it's GUI in VestaCP
Awesome. Thanks a ton!
Re: [HOWTO] Install CSF + Use it's GUI in VestaCP
The contribution is already old, CSF has officially launched a UI for VestaCP.
https://download.configserver.com/csf/changelog.txt
Install
https://download.configserver.com/csf/changelog.txt
Code: Select all
13.05 - Added official CentOS Web Panel (CWP) integration and CWP panel
specific configuration. See /etc/csf/readme.txt for more information
(only tested on CentOS v7)
Added official VestaCP integration and VestaCP specific configuration
(only tested on CentOS v7)
Code: Select all
cd /usr/src
rm -fv csf.tgz
wget https://download.configserver.com/csf.tgz
tar -xzf csf.tgz
cd csf
sh install.sh
Re: [HOWTO] Install CSF + Use it's GUI in VestaCP
This is cool. Thanks for the info. I'm a fan of CSF and install it on most of my VestaCPs.
Re: [HOWTO] Install CSF + Use it's GUI in VestaCP
When install csf in centos 7... Is it necesary uninstall default firewall an fail2ban?.
What will be the correct steps to do a good install of CSF in centos 7.
Thank you
Re: [HOWTO] Install CSF + Use it's GUI in VestaCP
I'm not sure if CSF does that automatically for you, but yes, you'd need to make sure that nothing else is trying to control iptables. In Vesta, that means checking /usr/local/vesta/conf/vesta.conf where you want to see:
Code: Select all
FIREWALL_SYSTEM=''
FIREWALL_EXTENSION=''
Re: [HOWTO] Install CSF + Use it's GUI in VestaCP
Thank you. I installed csf and config this as you recomended. Only one more dude....
How can I see the banneds ips? similar to fail2ban report.
thanks
How can I see the banneds ips? similar to fail2ban report.
thanks
plutocrat wrote: ↑Fri Dec 06, 2019 4:03 amI'm not sure if CSF does that automatically for you, but yes, you'd need to make sure that nothing else is trying to control iptables. In Vesta, that means checking /usr/local/vesta/conf/vesta.conf where you want to see:You can also disable fail2ban (not sure how centos does that ... systemctl stop/disable fail2ban ?) as CSF takes over those functions.Code: Select all
FIREWALL_SYSTEM='' FIREWALL_EXTENSION=''
Re: [HOWTO] Install CSF + Use it's GUI in VestaCP
They're added to /etc/csf/csf.deny with an explanation eg.
Code: Select all
174.138.188.83 # lfd: (smtpauth) Failed SMTP AUTH login from 174.138.188.83 (US/United States/vps241351.trouble-free.net): 5 in the last 3600 secs - Wed Nov 27 11:10:52 2019
185.234.219.105 # lfd: (smtpauth) Failed SMTP AUTH login from 185.234.219.105 (IE/Ireland/-): 5 in the last 3600 secs - Thu Nov 28 04:21:08 2019
45.227.253.212 # lfd: (smtpauth) Failed SMTP AUTH login from 45.227.253.212 (PA/Panama/hosting-by.directwebhost.org): 5 in the last 3600 secs - Thu Nov 28 08:03:10 2019
5.196.217.177 # lfd: 5.196.217.177 (FR/France/s2.claraz.com.br), 5 distributed smtpauth attacks on account [[email protected]] in the last 3600 secs - Fri Nov 29 03:46:59 2019
151.80.75.127 # lfd: 151.80.75.127 (FR/France/-), 5 distributed smtpauth attacks on account [[email protected]] in the last 3600 secs - Fri Nov 29 03:47:00 2019
185.234.219.51 # lfd: (smtpauth) Failed SMTP AUTH login from 185.234.219.51 (IE/Ireland/-): 5 in the last 3600 secs - Fri Nov 29 12:51:51 2019
74.92.190.9 # lfd: (smtpauth) Failed SMTP AUTH login from 74.92.190.9 (US/United States/74-92-190-9-Illinois.hfc.comcastbusiness.net): 5 in the last 3600 secs - Sat Nov 30 12:02:32 2019
https://download.configserver.com/csf/readme.txt
Re: [HOWTO] Install CSF + Use it's GUI in VestaCP
Thank You!!
plutocrat wrote: ↑Sat Dec 07, 2019 7:52 amThey're added to /etc/csf/csf.deny with an explanation eg.You can code up a script to mail that to you if you want. CSF can also be told to alert you every time an IP is banned if you prefer. Look in the csf.conf file which is well documented. You'll be playing around with that for the next few weeks. You'll also need to familiarise yourself with csf.pignore so you can stop false alerts. I strongly suggest looking at the documentation on the CSF website.Code: Select all
174.138.188.83 # lfd: (smtpauth) Failed SMTP AUTH login from 174.138.188.83 (US/United States/vps241351.trouble-free.net): 5 in the last 3600 secs - Wed Nov 27 11:10:52 2019 185.234.219.105 # lfd: (smtpauth) Failed SMTP AUTH login from 185.234.219.105 (IE/Ireland/-): 5 in the last 3600 secs - Thu Nov 28 04:21:08 2019 45.227.253.212 # lfd: (smtpauth) Failed SMTP AUTH login from 45.227.253.212 (PA/Panama/hosting-by.directwebhost.org): 5 in the last 3600 secs - Thu Nov 28 08:03:10 2019 5.196.217.177 # lfd: 5.196.217.177 (FR/France/s2.claraz.com.br), 5 distributed smtpauth attacks on account [[email protected]] in the last 3600 secs - Fri Nov 29 03:46:59 2019 151.80.75.127 # lfd: 151.80.75.127 (FR/France/-), 5 distributed smtpauth attacks on account [[email protected]] in the last 3600 secs - Fri Nov 29 03:47:00 2019 185.234.219.51 # lfd: (smtpauth) Failed SMTP AUTH login from 185.234.219.51 (IE/Ireland/-): 5 in the last 3600 secs - Fri Nov 29 12:51:51 2019 74.92.190.9 # lfd: (smtpauth) Failed SMTP AUTH login from 74.92.190.9 (US/United States/74-92-190-9-Illinois.hfc.comcastbusiness.net): 5 in the last 3600 secs - Sat Nov 30 12:02:32 2019
https://download.configserver.com/csf/readme.txt
Re: [HOWTO] Install CSF + Use it's GUI in VestaCP
Delete this lines in /usr/local/vesta/conf/vesta.conf:plutocrat wrote: ↑Fri Dec 06, 2019 4:03 amI'm not sure if CSF does that automatically for you, but yes, you'd need to make sure that nothing else is trying to control iptables. In Vesta, that means checking /usr/local/vesta/conf/vesta.conf where you want to see:You can also disable fail2ban (not sure how centos does that ... systemctl stop/disable fail2ban ?) as CSF takes over those functions.Code: Select all
FIREWALL_SYSTEM='' FIREWALL_EXTENSION=''
Code: Select all
FIREWALL_SYSTEM=
FIREWALL_EXTENSION=
Code: Select all
yum remove -y fail2ban*