Blog >> Tutorials >> DDOS Prevention Settings in CSF firewall {cPanel Server}

DDOS Prevention Settings in CSF firewall {cPanel Server}

DDOS Prevention Setting In CSF Firewall is a great tool available for free to protect your server and is compatible with the majority of popular control panels like cPanel, Direct Admin, Plesk etc.

Denial of Service (DoS) and Distributed Denial of Service (DDoS) attacks are very common issues we face with our publicly available servers.

In this case, the CSF Firewall will help to prevent two types of attacks without any hardware installation


If you are using Default CSF settings then SYNFLOOD is set to disabled, you will need to enable it with correct settings follow these simple steps.

10 Killer Steps to Start an Anonymous Blog

SYNFLOOD Configuration in CSF

You can find these settings on your WHM Panel, you need to log in as root to modify the settings

  • Sidebar > Scroll Down to Plugins Section in your WHM
  • Click “ConfigServer Security & Firewall
  • Choose “Firewall configuration” from the options

Now you can find “SYNFLOOD” Settings section with shortcut CRT + F {To Find} and Type SYNFLOOD it will highlight the section. I am adding recommended settings to prevent such DDos attacks on your server on the best level.




SYNFLOOD_RATE: Number of SYN packets to accept per IP, per second.

SYNFLOOD_BURST: Number of times the IP can hit the rate limit before being blocked in the firewall.
DDOS Prevention Settings in CSF firewall {cPanel Server}

Setting up PORTFLOOD in Firewall Configuration

On the same page, you can find these settings as well, by default PORTFLOOD is disabled you will need to

enable it and make these recommended changes or you may ask your system admin for the best practices depending upon your server configuration

UDPFLOOD_LIMIT = 50/sec {100 Seconds Recommended}
UDPFLOOD_BURST = 250 {500 is Recommended}

Now on the bottom of the page click on “CHANGE” and Restart the “CSF” to apply new settings on the server. Now your server is ready to handle such soft attacks

You May Also Like :

Free SSL Certificate for a lifetime with Free Hosting

7 Best Cloud Hosting for WordPress in 2022

7+ Fastest WordPress Hosting Increase website speed

7 Best Django Hosting 2022: Deploy Django App

On "DDOS Prevention Settings in CSF firewall {cPanel Server}"

    Leave a Reply

    Your email address will not be published. Required fields are marked *

    Thanks for submitting your comment!