what is the status of this, does the guide working with latest version?
thanks
@bubblecatcher For now you can use my steps and a mix of @indianets. Thanks!
*** as of today, HestiaTeam is not providing any supporting yet for CSF, due to strong reasons behind thereā¦
But there are ways to have it working within hestia UIā¦
ref: How to install CSF on Hestiacp web ui [config firewall] | Guest Blog Posting
Just run this below command as ROOT user from your linux terminal. (Tested with Hestia v1.7.3 * Ubuntu 20.x)
wget https://raw.githubusercontent.com/vvcares/hestia/master/hestia_csf_install.sh && bash hestia_csf_install.sh
The above command will do as below:
- Download the script from vvcares-github repo
- It will check if there is an existing CSF installation in ā/etc/csf/ā.
- If exists, it will proceed to Step#5
- If not exist, it will install fresh/new CSF firewall
- It will automatically add the hestiacp backend port into āCSF.CONF > TCP_INā
- Create an additional folder called ācsf folderā inside ā/usr/local/hestia/web/list/ā
- Add the CSF link button into your āhestiacp panel > in main admin dashboard onlyā & Exit.
It is important to note that CSF should not be your only line of defense for securing your server. You should also follow best practices for server security, such as keeping your server software up-to-date, using strong passwords, and limiting access to only necessary users and services.
4 Likes
Due to strong reasons behind there what?
I havenāt explored CSF since few years. Is there anything a user should be concerned about before trying CSF?
CSF has lot of unique settings can filter/blocking etc.,
commercial server, Im using this combo for few years.
If the team supports for CSF, there will be tons of questions will arise & have to spend time for troubleshooting for a 3rd partyās application.
3 Likes
Hello! Can you update the Blog link?
The Github link is also broken.
Hi, its working well.
I tried just now both to VVCARES.COM & GITHUB. Both are working wellā¦
Oops. The Github link is ok. I copied the wrong link here.
The Blog does not have a broken link. Itās Cloudflare blocking access.
Your script is perfect!!! It worked here with Debian 11 and hesciaCP v1.8.11 
Do you disable fail2ban to use CSF 
Hi, In my preduction server, Im running about ~20 sites in my server.
Iām just using CSF+Fail2Ban together, running smoothly. But some says, F2B is not needed. Just CSF is enough. But Im not sure.
Hello everyone, I have recently started using your panel, which I find quite simple to use and customize. Therefore, I am providing you with this modification to the control panel, which is definitely more convenient for the CSF firewall.
If you have installed the CSF firewall, you need to uninstall it and install the one mentioned on the previous pages. Then, add the PHP code provided.
Update PHP so that only the admin user can view it
nano /usr/local/hestia/web/templates/includes/panel.php
<!-- CSF tab section start -->
<?php
// Set default variables for CSF
if (!isset($_SESSION["CSF_SYSTEM"])) {
$_SESSION["CSF_SYSTEM"] = true; // Enable CSF system by default
}
if (!isset($panel[$user]["CSF"])) {
$panel[$user]["CSF"] = "unlimited"; // Set CSF limit, can be a number or 'unlimited'
}
if (!isset($panel[$user]["U_CSF"])) {
$panel[$user]["U_CSF"] = 0; // Number of CSFs currently used
}
// Check if the user is admin
$is_admin = isset($user) && $user === 'admin';
// Display CSF tab only if the CSF system is active and the user is admin
if ($_SESSION["CSF_SYSTEM"] && $is_admin) { ?>
<li class="main-menu-item">
<a class="main-menu-item-link <?php if ($TAB == 'CSF') echo 'active' ?>" href="/list/csf/" title="<?= _("CSF") ?>: <?= $panel[$user]['U_CSF'] ?> <?= _("Limit") ?>: <?= $panel[$user]['CSF'] == 'unlimited' ? 'ā' : $panel[$user]['CSF'] ?>">
<p class="main-menu-item-label"><?= _("CSF") ?><i class="fas fa-shield-alt"></i></p>
<ul class="main-menu-stats">
<li>
<?= _("CSF") ?>: <?= $panel[$user]["U_CSF"] ?> / <?= $panel[$user]["CSF"] == "unlimited" ? "<span class=\"u-text-bold\">ā</span>" : $panel[$user]["CSF"] ?>
</li>
</ul>
</a>
</li>
<?php } ?>
<!-- CSF tab section end -->
2 Likes
I am waiting for the native support from HestiaCP. By using hacks, you may have many issues and troubles.
Itās a simple PHP modification that doesnāt affect the Hestia panel. If the staff later updates it with a module or plugin, Iād be happy to implement it.
1 Like
@Alex_Black & @MAN5 - I marked your reply as a Solution. Thank you for the update!
Btw, CSF stands out as an exceptional firewall, and I highly recommend it to othersā¦
1 Like
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.