Announcement

Collapse
No announcement yet.

Imunify360 & LFD

Collapse
X
Collapse
 
  • Page of 1
  • Filter
  • Time
  • Show
Clear All
new posts
Previous template Next
  • #1

    Imunify360 & LFD

    One thing thats preventing us from testing Imunify360 on more servers is that we really depend on LFDs (part of ConfigServer Firewall) AUTHRELAY, LOCALRELAY and LOCALHOSTRELAY tracking to monitor for spammers, which is particularly useful on older servers where customer web applications may not always be up to date.

    Id like to use Imunify360s herd firewall, but still use LFD for monitoring of spammers.

    Is there any way to make these play nicely together?
    Tags: None
  • #2
    Our next version of Imunify360 (around a month from now) should integrate nicely with LFD/CXS. This way you will be able to get the best of both worlds.

    Comment

    • #3
      That sounds great. Looking forward to it!

      Comment

      • #4
        Do you by the way plan features like this ?
        Usually (90% - 10% its phishing) when an account gets infected/hacked bots or malicious users are uploading mail scripts. And the usual Top #1 problem for us (My personal opinion of course) is dealing with outgoing mail spam.

        CSF/LFD notifies us when someone / some script is sending mass mails (variable to send alert after x mails), localrelay, authrelay, and when the queue is above x limit.

        When I get the warning I know something is wrong and start investigation. If not, usual outcome is server IP blacklisted in multiple RBLs -and other users cant send mails-, abuse mails from datacenters, IP block, or whole server block (for one account). So I believe its crucial to know whats happening with outgoing mails and queues.

        Comment

        • #5
          We are eager to go full throttle on Imunfiy360 if and when:

          - it is fully integrated with CSF
          - those exciting features like Malware Detection and Intrusion Detection and Protection System are functional
          - it is able to give you more incident report that you can actually use
          - and Web Applications Sandboxing

          If Imunify360 can come out with these, it will be the ultimate game-changer.
          I guess that these will be available with next release and looking forward to that.

          Comment

          • #6
            I was informed by email that Imunify360 now supports CSF integration, however I dont see a way to switch back to using it.

            Is the only way to uninstall Imunify360, reactivate CSF, and then reinstall Imunity360 to get the CSF integration working?

            Comment

            • #7
              > I was informed by email that Imunify360 now supports CSF integration, however I dont see a way to switch back to using it.
              >
              > Is the only way to uninstall Imunify360, reactivate CSF, and then reinstall Imunity360 to get the CSF integration working?

              Hi! Since version 1.1.3 if user has Imunify360 agent running, he can just start csf (csf -e) and in about 30 seconds imunify360 will switch to csf integration mode. To check it, user can visit Firewall->White list page of Imunify360 UI and check if there is a "White list management disabled" warning.

              Comment

              • #8
                Great, that worked. Support had told me to re-install which I thought was likely unnecessary.

                Comment

                • #9
                  Can you clarify exactly how the CSF integration works?

                  CSF/LFD takes back over as the main firewall and Imunify just handles your gray listed IPs for herd protection?

                  Comment

                  • #10
                    > Can you clarify exactly how the CSF integration works?
                    >
                    > CSF/LFD takes back over as the main firewall and Imunify just handles your gray listed IPs for herd protection?

                    Yes, CSF acts as primary firewall and Imunify360 only maintains gray list. You can get more details here https://docs.imunify360.com/index.ht...ntegration.htm

                    Comment

                    • #11
                      > Our next version of Imunify360 (around a month from now) should integrate nicely with LFD/CXS. This way you will be able to get the best of both worlds.

                      I see no mention of integration with CXS. Has this been accomplished?

                      Thanks

                      Comment

                      • #12
                        > I see no mention of integration with CXS. Has this been accomplished?

                        No integration with CXS is planned as imunify360 has all features CXS does.

                        Comment

                        • #13
                          It would be nice for Immunify360 to have a CSF and CXS uninstall option. Once hosting companies like us are comfortable that I360 is on par with CSF triggers, alerts, etc. that we can sundown CSF and CXS.

                          Comment

                          Previous template Next
                          Working...
                          X