Use AbuseIPDB with CSF (ConfigServer Firewall)

Kurtis W.
  • Updated
Follow

This article covers how to enable AbuseIPDB's integration with ConfigServer Firewall to block abusive access attempts to your Dedicated Server.

Related Articles

How to Connect to your Server with SSH
How to Install CSF for Better cPanel Server Security
AutoSSL with Cloudflare

Enable AbuseIPDB integration

IMPORTANT: This solution will require root access. If this needs to be obtained, follow the guide on requesting root access.

NOTE: Due to IPTables limits, this will not work on our VPS servers. You will need a Dedicated Server plan.

  1. Install CSF into your server
  2. Create an account with AbuseIPDB
    IMPORTANT: A free account includes 1000 daily checks, if your server has more traffic than 1000 unique hits daily, you may need a paid plan. If you sign up as a webmaster and verify with IPDB, you can get 3000 free daily checks.
  3. Create an API Key
  4. SSH into your server
  5. Open the blacklist file with  
    nano /etc/csf/csf.blocklists
  6. The nano editor will then open up the file and you can begin entering text.
  7. Navigate to the end of the file using the down arrow key

  8. Append the following to the end of the file on a new line by pasting

    # AbuseIPDB blacklist
ABUSEIPDB|86400|10000|https://api.abuseipdb.com/api/v2/blacklist?key=API_KEY&plaintext

    REPLACE: API_KEY with the API key from Step 3

  9. Once you have finished editing click Ctrl+O then the Enter key to save the file.
  10. Restart CSF with 
    csf -ra

Related articles

Comments

0 comments

Article is closed for comments.