Learn about Centmin Mod LEMP Stack today
Register Now

Beta Branch CentOS 8 prep for CSF Firewall in 123.09beta01

Discussion in 'Centmin Mod Github Commits' started by eva2000, Oct 1, 2019.

  1. eva2000

    eva2000 Administrator Staff Member

    46,237
    10,510
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +16,293
    Local Time:
    6:49 PM
    Nginx 1.19.x
    MariaDB 5.5/10.x
  2. Liam W

    Liam W Member

    62
    17
    8
    Jun 26, 2014
    United Kingdom
    Ratings:
    +22
    Local Time:
    8:49 AM
    nginx
    10.3.x
    Is there a way to get this for CentOS 7 as well? I'm not a fan of [icode]csf[/icode].

    (‍♂️ You're not using XF2 here. Oh well, I'll leave the icode tags in.)
     
  3. eva2000

    eva2000 Administrator Staff Member

    46,237
    10,510
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +16,293
    Local Time:
    6:49 PM
    Nginx 1.19.x
    MariaDB 5.5/10.x
    Still XF 1.5 right now. This update is for CentOS 8 to use CSF Firewall. CentOS 7 already uses CSF Firewall with Centmin Mod.

    Unfortunately CSF Firewall is here to stay as it's integrated and expected by other software that gets installed. But CSF Firewall is just a wrapper to IPtables just like Firewalld is an interface to IPtables in CentOS 7 at least. So you can just leave CSF Firewall in place and then use your normal IPTables rules and if they need to be done before CSF Firewall loads, add such IPTable rules in an executable permission set script in /etc/csf/csfpre.sh which load IPtable rules before CSF Firewall ones.
     
  4. Liam W

    Liam W Member

    62
    17
    8
    Jun 26, 2014
    United Kingdom
    Ratings:
    +22
    Local Time:
    8:49 AM
    nginx
    10.3.x
    Yeah, but csf adds a shit ton of crap into iptables, and firewalld is nicer to use. Oh well.