12 December 2014
Category:
Security
Comments: Comments Off on Block countries using CSF Firewall

Block countries using CSF Firewall

Sometimes you may want to block certain countries from visiting your sites. This may be due to excessive fraud or legal issues with accepting customers from countries. Blocking countries via the CSF Firewall is quick and easy. Here’s how it’s done.

If you’re on a VPS or Dedicated Server, the block using the Firewall is a better alternative. It would place less overhead on the server as you’re blocking the user from even attempting to load a page on your site. This will save CPU and Memory resources for your REAL visitors that really need it. If you know you’re never going to ship a product to China, Turkey or Iraq, we recommend that you block the country from even accessing the site. This will help reduce the number of fraud orders that you receive.

Here’s the steps for modifying the ConfigServer Security & Firewall (CSF):

Open the WHM for your serverScroll to the bottom left and find the “ConfigServer Security&Firewall”
Click the “Firewall Configuration” button
Scroll down the page about 1/3 (or use the FIND in your browser) to the section with “CC_DENY”
These are comma separated list of 2 letter Country Codes. Here’s a link to the codes – http://www.worldatlas.com/aatlas/ctycodes.htm

So for every country you want to deny, you just enter those letters in the field (separated by a comma).

The alternate way is to use the “CC_ALLOW_FILTER” and enter only the countries you want to ALLOW access to. We do not recommend using the CC_ALLOW option as this allows users to bypass the filtering done on the firewall when checking for spammers and hackers. If you use the CC_ALLOW_FILTER, the filtering will still work.

Once you’re done, scroll to the bottom of the page and click CHANGE. This will restart the firewall, and you’re now all set to go.

Comments are closed.