DDOS Prevention Settings in cPanel based CSF firewall

There is two settings in CSF you'll need to properly configure for soft DDOS protection.

  • SYNFLOOD
  • PORTFLOOD

1. SYNFLOOD Configuration in CSF

You can find these settings on your WHM Panel, you need to login as root to modify the settings.

Sidebar > Scroll Down to Plugins Section in your WHM
Click “ConfigServer Security & Firewall“
Choose “Firewall configuration” from the options section

Now you can find “SYNFLOOD” Settings section with shortcut CRT + F {To Find} and Type SYNFLOOD it will highlight the section. By default, SYNFLOOD is disabled. You will need to enable it and make these recommended changes.

SYNFLOOD = “1″ {ENABLE IT}
SYNFLOOD_RATE = “30/s”
SYNFLOOD_BURST = “10
SYNFLOOD_RATE: Number of SYN packets to accept per IP, per second.
SYNFLOOD_BURST: Number of times the IP can hit the rate limit before being blocked in the firewall.

synflood settings

2. PORTFLOOD Configuration in CSF

On the same page, you can find the settings for PORTFLOOD. By default, PORTFLOOD is disabled. You will need to enable it and make these recommended changes.

UDPFLOOD = ON
UDPFLOOD_LIMIT = 50/sec
UDPFLOOD_BURST = 250

Now on the bottom of the page click on “CHANGE” and Restart the “CSF” to apply new settings on the server. Now your server is ready to handle soft DDOS attacks.

  • csf, firewall, ddos, ddos settings, cpanel csf, synflood, portflood, whm firewall
  • 13 Users Found This Useful
Was this answer helpful?

Related Articles

How to flush your DNS cache

Your home computer creates a cache for all DNS settings. It does this to save time each time you...

What is the root login for my new VPS server?

The root login is the same password our system sent you in your welcome email. You just change...

What is the path to PERL?

The path to PERL in PERL script is:#!/usr/local/bin/perl

Do you troubleshoot scripts and apps?

Hello,Sorry, but troubleshooting sripts and apps needs to be done by the scipt maker or a...

Can I change my web hosting main domain name?

Yes, and it's very easy.Just add a support ticket like this:  old: olddomain.comnew:...