Control Web Panel
Security => CSF Firewall => Topic started by: setecabanas on October 14, 2025, 03:07:58 PM
-
firewall appears disabled in cwp panel
but csf is working correctly
[root@s3 services]# csf -e
csf and lfd are not disabled!
[root@s3 services]# csf -e
csf and lfd are not disabled!
any idea?
-
Try toggling it on/off/on in the web GUI -- sometimes it gets out of sync with the actual CSF reality (a bug).
-
Yes thanks, I had already tried that but nothing.
-
SSH into the server, and from the CLI:
csf -e, if working you should see what you are "csf and lfd are not disabled!"
That's a good thing.
Then run:
systemctl start csf
systemctl start lfd
systemctl enable csf
systemctl enable lfd
Some system are weird.
Log back into CWP, and it should show as 'On' now.
-
thanks
-
I have tried to install a new server with Almalinux 9
So, in a fresh installation same problem. But it is not important, only affects cwp panel
[root@s3 almalinux]# csf -e
csf and lfd are not disabled!
[root@s3 almalinux]#
[root@s3 almalinux]#
[root@s3 almalinux]# systemctl start csf
[root@s3 almalinux]# systemctl start lfd
[root@s3 almalinux]# systemctl enable csf
[root@s3 almalinux]# systemctl enable lfd
-
And you've rebooted? Sometimes it takes a full reboot to get itself sorted out! :P
-
No, I had already restarted several times :D
I have no idea what's going on.
Do you know what the CWP checks to make it appear as activated?
-
It checks your IP address as registered in their system -- so your server connects to their licensing server to confirm that it is activated as CWP Pro.
Running /scripts/update_cwp will trigger the check daily.
And for good measure, here's their wiki article about CSF/LFD configuration:
https://wiki.centos-webpanel.com/csflfd-firewall-configuration
-
So, is very strange.
- lfd process is running
[root@s3 home]# ps -ef |grep lfd
root 1701 1 0 11:15 ? 00:00:26 lfd - sleeping
- cwp license pro is ok
- csf is enabled
However in cwp panel CSF is not enabled
i donīt know what happened :(
-
What OS are you running on the server?
-
Distro Name: AlmaLinux release 9.6
[root@s3 csf]# csf -v
csf: v15.00 (CentOS Web Panel)
-
That's what we run.
Usually once you start it & enable it via the CLI, and maybe reboot, CWP will see it running.
All CWP is doing in the background is running
systemctl status csfAnd then displaying On/Off
-
If it works for you, then I assume it's something specific to my server. But whatever. It's just a matter of ignoring the warning in CWP panel.
[root@s3 /]# systemctl status csf
● csf.service - ConfigServer Firewall & Security - csf
Loaded: loaded (/usr/lib/systemd/system/csf.service; enabled; preset: disabled)
Active: active (exited) since Sat 2025-10-18 11:51:50 UTC; 17h ago
Main PID: 775 (code=exited, status=0/SUCCESS)
CPU: 490ms
Oct 18 11:51:49 s3.domineando.eu systemd[1]: Starting ConfigServer Firewall & Security - csf...
Oct 18 11:51:50 s3.domineando.eu csf[775]: (restoring iptables) (restoring ip6tables)
Oct 18 11:51:50 s3.domineando.eu systemd[1]: Finished ConfigServer Firewall & Security - csf.
-
https://prnt.sc/i6_RvbeF1ytn
-
Installing CWP on AL9 has a specific way.
Is this server in use by anything currently?
If not, you can reimage it with the Base AL9, and I could login and get everything setup for you.
-
I have installed CWP following these steps
https://forum.centos-webpanel.com/apache/issues-with-brand-new-fresh-install-with-almalinux-9-4/msg48375/#msg48375
Dont worry, I really appreciate your help but I assumed that is a problem to my server.
Thanks
-
Defiantly try & run the line again
dnf install nano wget ipset ebtables iptables ipset-service uuid uuid-devel libuuid-develand make sure everything is installed.
If something was missing, CSF might not have installed correctly.
-
[root@s3 ]# dnf install nano wget ipset ebtables iptables ipset-service uuid uuid-devel libuuid-devel
Last metadata expiration check: 2:14:14 ago on Wed 22 Oct 2025 05:18:09 AM CEST.
Package nano-5.6.1-7.el9.x86_64 is already installed.
Package wget-1.21.1-8.el9_4.x86_64 is already installed.
Package ipset-7.11-11.el9_5.x86_64 is already installed.
Package iptables-nft-1.8.10-11.el9_5.x86_64 is already installed.
Package iptables-nft-1.8.10-11.el9_5.x86_64 is already installed.
Package ipset-service-7.11-11.el9_5.noarch is already installed.
Package uuid-1.6.2-55.el9.x86_64 is already installed.
Package uuid-devel-1.6.2-55.el9.x86_64 is already installed.
Package libuuid-devel-2.37.4-21.el9.x86_64 is already installed.
Dependencies resolved.
Nothing to do.
Complete!
In cpw panel firewall is OFF
csf works correctly in the server
maybe can try to uninstall csf and reinstall ...
-
Well, I think I have nothing else left to try
I have uninstall cwp and install again.
But everything same :(
-
If it's any comfort, it did this to me once -- and eventually just sorted itself out.
-
I had the same issue; it turned out that lfd was not starting because of an error "Unrecognized character \xE2" in /usr/local/csf/bin/regex.custom.pm lines 26 and 28.
You can check its status with: tail -f /var/log/lfd.log -> it seems that the csf -e command will only check if the services are enabled but will not report if they are actually running or not.
Basically all I needed to do was to change the “ ” to " " and lfd started again.
I hope it works for you.