Excellent! The script takes a more comprehensive approach than my simply manually adding in the IP to the csf whitelist...
... looking through the script, I have an issue with CWP using "root" to sign-in to my server... I'd much prefer them using a user name with an ssh key combo that I assign them... this name either being in the wheel group, or requiring/allowing this user to su. This creates a clearer log record of who's doing what when, etc. A separate issue for a separate post...
But now they're in my whitelist... great... thank you!
(Maybe I need to start looking through all this other big content in this /scripts folder - are these scripts documented anywhere else?)