• If you are still using CentOS 7.9, it's time to convert to Alma 8 with the free centos2alma tool by Plesk or Plesk Migrator. Please let us know your experiences or concerns in this thread:
    CentOS2Alma discussion

Plesk Firewall VS APF and BFD

You can't really have two firewalls.

You need to disable the Plesk one before installing and running APF.

I'm sure there are better ways but just removing the module in the admin panel (servers > Modules > Manage Modules or something like that if I remember correctly) will do the trick.

Faris.
 
which is better?

Plesk Firewall or (APF and BFD)

Why?
 
APF is much more comprehensive and flexible, but you don't get a GUI interface.

But once you have set it up adding ips to block or allow is just a matter of modifying a text file and restarting apf.

If possible you should test it and see how you get on with it. You can download microsoft's virtual PC for free, create a VPS with your version of linux on it, install the demo (1 domain) version of plesk in it and play with it until you are happy that you can do what you want with no difficulty.

Faris.
 
you should check out configserver.com

it does the same stuff as apf and bfd plus more and its free too..

i have configserver on one of my boxes and apf/bfd on another... prolly going to put configserver on the other one too
 
I used to use APF but found it had troubles with dual NICs and some other limits I cannot remember right now.

I switched to shorewall and never looked back. Once we got the base config sorted out, it is the most powerful I have seen. Fairly easy file to edit for configuration of rules and away you go. A CLI rule checker and restart. Has ooops mode where you can put your IP in and even if the firewall stops all incoming connections it will allow all in from you.

I used it on straight CentOS 4.x boxes (no control panel) and it was fantastic and improved the overall box performance once we removed APF.
 
The Plesk firewall is just IPTables rules, but you also have to have IPTables installed in order to use APF. I never removed/disabled the Plesk firewall before installing APF/BFD and both run at the same time without any problems. But, I configure all my port rules with APF and left the default rules for Plesk firewall, which is just "allow all."
 
I have used APF and BFD for many years, back on RH9 and currently on RHEL with out problems.

Its pretty powerfull and easy to configure - like others said, it has no GUI so if you need one of those, it may not be right for you.

I like its auto blocking feature, but that can also get you in trouble if some one spoofs an IP and you end up blocking everyone through apnic :p
 
You must log in or register to reply here.

Similar threads

S
Question Questions Regarding PHP Updates and Firewall Installation in Plesk
Replies
1
Views
420
Peter Debik
P
S
Question Firewall rules SMTP Server
Replies
5
Views
1K
Kaspar
K
G
Issue Database Malware or False Positive?
Replies
2
Views
394
Gene Steinberg
G
T
Resolved SECURITY - attack surface : ports 7080 and 7081
2
Replies
30
Views
11K
2dareis2do
2
D
Resolved Plesk crashed while saving firewall rules
Replies
3
Views
460
danlalonde
D
Back
Top