Bobcares

Is your cPanel firewall causing frequent connection timeout issues for your customers?

by | Aug 2, 2017

Web hosts lose thousands of dollars to server attacks. Data loss and downtime badly affects hosting credibility. Securing web servers from attacks is crucial for business success.

In our role as Outsourced hosting support specialists for web hosts, ensuring fool-proof server security is a major task we do to protect servers from hacks.  

cPanel firewalls – A boon or a curse?

cPanel servers come with a strong firewall combo – Config Server Firewall (CSF) and Login Failure Daemon (LFD). When configured right, they provide protection to the servers by preventing unauthorised access and malicious attacks.

By blocking IP addresses that reach a specific connection limit, the CSF firewall protects cPanel servers from port scan, SYN attacks, DOS attacks, etc.

But these firewalls have no intelligence of their own. They work based on how you configure it. If the rules are too relaxed, they may not serve the intended purpose.

The default settings of the cPanel CSF/LFD firewall allow only a limited number of access to the services such as website or email. If the firewall rules are set too tight, valid users get blocked and find it difficult to access their sites.

  Getting blocked by the firewall rules can disrupt normal functioning of customer websites. We help our customers deliver quick resolution to these issues using our 24/7 US based phone support. Learn More.

For instance, customers who save passwords in their devices may forget to update it after a change. Someone who is experimenting with his website can accidentally violate the security rules or exceed connection limits.

All such valid customers can also get blocked by the cPanel firewall rules. We’ve seen many instances where the end users complain to the web host about their site unavailability or missing emails.

How we help you get the best out of your cPanel firewalls

Too strict a firewall rule can prevent normal website functioning, whereas inadequate hardening can lead to hacks. Both these scenarios can cause an adverse effect on your hosting business, and may cost you anything from a few to thousands of dollars.

Every web host know how costly and stressful it is to acquire new customers, compared to the cost and efforts involved in retaining existing customers by ensuring them a stable and secure hosting service.

Though automated IP block software such as cPanel firewalls helps provide security and stability to servers, they lack adaptability and logic. But expert server specialists can tune them to deliver the best protection along with ensuring a normal functionality.

See how we help hosting companies!

At Bobcares, we install and configure server firewalls as a part of the initial server hardening and setup. With our expertise managing a multitude of cPanel hosting servers over the years, we know the ideal settings that suit each business type.

But we don’t stop with this one-time setup. As even a few failed logins can lead to the valid customer IP addresses being blocked, our server experts perform these tasks on an ongoing basis to ensure a smooth business run for web hosts.

  1. Audit all cPanel firewall logs in the server once a week to make sure valid requests are not blocked.
  2. By examining the pattern of IP blocks, we determine whether the firewall rules are strict server wide or specific to one customer.
  3. Based on the reason for the IP blocks, we update the firewall configuration settings to avoid block of legitimate user access.
  4. If the customer’s web or other application have any conflicting settings with the server firewall, we get that sorted out.
  5. In cases where IP block issues are frequently noted for many users, we optimize the server firewall settings further.

Factors such as change in the number of accounts, traffic spike of web sites, end customer applications, etc, can have an impact on the adequacy of the cPanel firewall rules.

With our continual firewall maintenance process, which includes adding new rules based on impending new threats and modifying existing rules based on audits, we’ve been able to provide reliable and delightful experience to our customers.

Firewall misconfiguration is one of the top reasons for customer complaints in cPanel hosting servers. If you would like to know how to avoid downtime for your customers due to cPanel IP blocks, we would be happy to talk to you.

 

GET 24 HOURS PHONE SUPPORT SERVICES

Use Bobcares for your phone support services. Ensure 24/7 coverage for your customers!

CONTACT US FOR 24/7 PHONE SUPPORT PLANS

1 Comment

  1. gameloverr

    Hi, how to fix connection timed out error in any browser, particular website?

    Reply

Submit a Comment

Your email address will not be published. Required fields are marked *

Never again lose customers to poor
server speed! Let us help you.

Privacy Preference Center

Necessary

Necessary cookies help make a website usable by enabling basic functions like page navigation and access to secure areas of the website. The website cannot function properly without these cookies.

PHPSESSID - Preserves user session state across page requests.

gdpr[consent_types] - Used to store user consents.

gdpr[allowed_cookies] - Used to store user allowed cookies.

PHPSESSID, gdpr[consent_types], gdpr[allowed_cookies]
PHPSESSID
WHMCSpKDlPzh2chML

Statistics

Statistic cookies help website owners to understand how visitors interact with websites by collecting and reporting information anonymously.

_ga - Preserves user session state across page requests.

_gat - Used by Google Analytics to throttle request rate

_gid - Registers a unique ID that is used to generate statistical data on how you use the website.

smartlookCookie - Used to collect user device and location information of the site visitors to improve the websites User Experience.

_ga, _gat, _gid
_ga, _gat, _gid
smartlookCookie
_clck, _clsk, CLID, ANONCHK, MR, MUID, SM

Marketing

Marketing cookies are used to track visitors across websites. The intention is to display ads that are relevant and engaging for the individual user and thereby more valuable for publishers and third party advertisers.

IDE - Used by Google DoubleClick to register and report the website user's actions after viewing or clicking one of the advertiser's ads with the purpose of measuring the efficacy of an ad and to present targeted ads to the user.

test_cookie - Used to check if the user's browser supports cookies.

1P_JAR - Google cookie. These cookies are used to collect website statistics and track conversion rates.

NID - Registers a unique ID that identifies a returning user's device. The ID is used for serving ads that are most relevant to the user.

DV - Google ad personalisation

_reb2bgeo - The visitor's geographical location

_reb2bloaded - Whether or not the script loaded for the visitor

_reb2bref - The referring URL for the visit

_reb2bsessionID - The visitor's RB2B session ID

_reb2buid - The visitor's RB2B user ID

IDE, test_cookie, 1P_JAR, NID, DV, NID
IDE, test_cookie
1P_JAR, NID, DV
NID
hblid
_reb2bgeo, _reb2bloaded, _reb2bref, _reb2bsessionID, _reb2buid

Security

These are essential site cookies, used by the google reCAPTCHA. These cookies use an unique identifier to verify if a visitor is human or a bot.

SID, APISID, HSID, NID, PREF
SID, APISID, HSID, NID, PREF