ConfigServer Security & Firewall (CSF) is an advanced web security application available to WHM users with root access. One of its useful features is the ability to search through system logs for specific files, IP addresses, or other information to troubleshoot security events or investigate server activity.

How to Do It

  1. Step 1: Log in to WHM

    Log in to your root account of WHM.

  2. Step 2: Navigate to Plugins

    Select the Plugins option from the navigation menu.

    WHM Plugins menu

  3. Step 3: Open ConfigServer Security & Firewall

    Click on ConfigServer Security & Firewall.

    ConfigServer Security & Firewall option

    The CSF interface will open.

  4. Step 4: Access Search System Logs

    Click the Search System Logs button.

    Search System Logs button

  5. Step 5: Configure and Execute Search

    You will find the search options for the CSF log:

    • Select the Log to refer for the search.
    • Enter the file name or other text to search in the Text field.
    • Click on Search.

    CSF system logs search interface

    The search results will display matching entries from the selected log file.

Tip: The notes that CSF provides may come in handy when looking through logs, as they often contain context about security events and blocked connections.