Bobcares
Client Area
Emergency Support
cPanel | Technical Support

Is your cPanel firewall causing frequent connection timeout issues for your customers?

by | Aug 2, 2017

Web hosts lose thousands of dollars to server attacks. Data loss and downtime badly affects hosting credibility. Securing web servers from attacks is crucial for business success.

In our role as Outsourced hosting support specialists for web hosts, ensuring fool-proof server security is a major task we do to protect servers from hacks.  

cPanel firewalls – A boon or a curse?

cPanel servers come with a strong firewall combo – Config Server Firewall (CSF) and Login Failure Daemon (LFD). When configured right, they provide protection to the servers by preventing unauthorised access and malicious attacks.

By blocking IP addresses that reach a specific connection limit, the CSF firewall protects cPanel servers from port scan, SYN attacks, DOS attacks, etc.

But these firewalls have no intelligence of their own. They work based on how you configure it. If the rules are too relaxed, they may not serve the intended purpose.

The default settings of the cPanel CSF/LFD firewall allow only a limited number of access to the services such as website or email. If the firewall rules are set too tight, valid users get blocked and find it difficult to access their sites.

  Getting blocked by the firewall rules can disrupt normal functioning of customer websites. We help our customers deliver quick resolution to these issues using our 24/7 US based phone support. Learn More.

For instance, customers who save passwords in their devices may forget to update it after a change. Someone who is experimenting with his website can accidentally violate the security rules or exceed connection limits.

All such valid customers can also get blocked by the cPanel firewall rules. We’ve seen many instances where the end users complain to the web host about their site unavailability or missing emails.

How we help you get the best out of your cPanel firewalls

Too strict a firewall rule can prevent normal website functioning, whereas inadequate hardening can lead to hacks. Both these scenarios can cause an adverse effect on your hosting business, and may cost you anything from a few to thousands of dollars.

Every web host know how costly and stressful it is to acquire new customers, compared to the cost and efforts involved in retaining existing customers by ensuring them a stable and secure hosting service.

Though automated IP block software such as cPanel firewalls helps provide security and stability to servers, they lack adaptability and logic. But expert server specialists can tune them to deliver the best protection along with ensuring a normal functionality.

See how we help hosting companies!

At Bobcares, we install and configure server firewalls as a part of the initial server hardening and setup. With our expertise managing a multitude of cPanel hosting servers over the years, we know the ideal settings that suit each business type.

But we don’t stop with this one-time setup. As even a few failed logins can lead to the valid customer IP addresses being blocked, our server experts perform these tasks on an ongoing basis to ensure a smooth business run for web hosts.

  1. Audit all cPanel firewall logs in the server once a week to make sure valid requests are not blocked.
  2. By examining the pattern of IP blocks, we determine whether the firewall rules are strict server wide or specific to one customer.
  3. Based on the reason for the IP blocks, we update the firewall configuration settings to avoid block of legitimate user access.
  4. If the customer’s web or other application have any conflicting settings with the server firewall, we get that sorted out.
  5. In cases where IP block issues are frequently noted for many users, we optimize the server firewall settings further.

Factors such as change in the number of accounts, traffic spike of web sites, end customer applications, etc, can have an impact on the adequacy of the cPanel firewall rules.

With our continual firewall maintenance process, which includes adding new rules based on impending new threats and modifying existing rules based on audits, we’ve been able to provide reliable and delightful experience to our customers.

Firewall misconfiguration is one of the top reasons for customer complaints in cPanel hosting servers. If you would like to know how to avoid downtime for your customers due to cPanel IP blocks, we would be happy to talk to you.

 

Related posts:

  1. Is cPanel firewall issues causing frequent service downtimes? Here’s how you can protect your hosting business
  2. Trying to Disable cPanel firewall (cpHulk)? Read this first if you’re a Web or VPS host
  3. Cloudflare Zone Lockdown – How to configure
  4. Cloudflare User-Agent Blocking Rules – How to create

GET 24 HOURS PHONE SUPPORT SERVICES

Use Bobcares for your phone support services. Ensure 24/7 coverage for your customers!

CONTACT US FOR 24/7 PHONE SUPPORT PLANS

1 Comment

  1. gameloverr
    gameloverr on 2016-09-10 at 23:58

    Hi, how to fix connection timed out error in any browser, particular website?

    Reply

Submit a Comment

Your email address will not be published. Required fields are marked *

100% WHITE LABEL SUPPORT

Bobcares

Spend time on your business - not on tech support.

Tech support can keep you busy all day long. That is time you could use to focus on your business. Leave your end-user support to us, and use that time to focus on the growth and success of your business.

TALK TO SALES Or click here to learn more.

GET UP TO 25% OFF

cPanel Support

Spend time on your business, not on your servers.

Managing a server is time consuming. Whether you are an expert or a newbie, that is time you could use to focus on your product or service. Leave your server management & end-user tech support to us, and use that time to focus on the growth and success of your business.

TALK TO US Or click here to learn more.

Related Articles

  1. Is cPanel firewall issues causing frequent service downtimes? Here’s how you can protect your hosting business
  2. Trying to Disable cPanel firewall (cpHulk)? Read this first if you’re a Web or VPS host
  3. Cloudflare Zone Lockdown – How to configure
  4. Cloudflare User-Agent Blocking Rules – How to create

Never again lose customers to poor
server speed! Let us help you.

GET STARTED

Privacy Preference Center

Consent Management

When you visit any website, it may store or retrieve information on your browser, mostly in the form of cookies. This information might be about you, your preferences or your device and is mostly used to make the site work as you expect it to. The information does not usually directly identify you, but it can give you a more personalized web experience.

Because we respect your right to privacy, you can choose not to allow some types of cookies. Click on the different category headings to find out more and change our default settings. However, blocking some types of cookies may impact your experience of the site and the services we are able to offer.

Privacy Policy

Required
By using this site, you agree to our Privacy Policy.

Necessary

Necessary cookies help make a website usable by enabling basic functions like page navigation and access to secure areas of the website. The website cannot function properly without these cookies.

PHPSESSID - Preserves user session state across page requests.

gdpr[consent_types] - Used to store user consents.

gdpr[allowed_cookies] - Used to store user allowed cookies.

Cookies Used

Required
PHPSESSID, gdpr[consent_types], gdpr[allowed_cookies]

livechat.bobcares.com

Opt Out
PHPSESSID

my.bobcares.com

Opt Out
WHMCSpKDlPzh2chML

Statistics

Statistic cookies help website owners to understand how visitors interact with websites by collecting and reporting information anonymously.

_ga - Preserves user session state across page requests.

_gat - Used by Google Analytics to throttle request rate

_gid - Registers a unique ID that is used to generate statistical data on how you use the website.

smartlookCookie - Used to collect user device and location information of the site visitors to improve the websites User Experience.

Cookies Used

_ga, _gat, _gid

google.com

Opt Out
_ga, _gat, _gid

manager.smartlook.com

Opt Out
smartlookCookie

clarity.microsoft.com

Opt Out
_clck, _clsk, CLID, ANONCHK, MR, MUID, SM

Marketing

Marketing cookies are used to track visitors across websites. The intention is to display ads that are relevant and engaging for the individual user and thereby more valuable for publishers and third party advertisers.

IDE - Used by Google DoubleClick to register and report the website user's actions after viewing or clicking one of the advertiser's ads with the purpose of measuring the efficacy of an ad and to present targeted ads to the user.

test_cookie - Used to check if the user's browser supports cookies.

1P_JAR - Google cookie. These cookies are used to collect website statistics and track conversion rates.

NID - Registers a unique ID that identifies a returning user's device. The ID is used for serving ads that are most relevant to the user.

DV - Google ad personalisation

_reb2bgeo - The visitor's geographical location

_reb2bloaded - Whether or not the script loaded for the visitor

_reb2bref - The referring URL for the visit

_reb2bsessionID - The visitor's RB2B session ID

_reb2buid - The visitor's RB2B user ID

Cookies Used

IDE, test_cookie, 1P_JAR, NID, DV, NID

doubleclick.net

Opt Out
IDE, test_cookie

google.co.in

Opt Out
1P_JAR, NID, DV

google.com

Opt Out
NID

olark.com

Opt Out
hblid

rb2b.com

Opt Out
_reb2bgeo, _reb2bloaded, _reb2bref, _reb2bsessionID, _reb2buid

Security

These are essential site cookies, used by the google reCAPTCHA. These cookies use an unique identifier to verify if a visitor is human or a bot.

Cookies Used

SID, APISID, HSID, NID, PREF

google.com

Opt Out
SID, APISID, HSID, NID, PREF