ConfigServer Security & Firewall (CSF) is an advanced web security application available to WHM users with root access. One of its useful features is the ability to search through system logs for specific files, IP addresses, or other information to troubleshoot security events or investigate server activity.
How to Do It
-
Step 1: Log in to WHM
Log in to your root account of WHM.
-
Step 2: Navigate to Plugins
Select the Plugins option from the navigation menu.
-
Step 3: Open ConfigServer Security & Firewall
Click on ConfigServer Security & Firewall.
The CSF interface will open.
-
Step 4: Access Search System Logs
Click the Search System Logs button.
-
Step 5: Configure and Execute Search
You will find the search options for the CSF log:
- Select the Log to refer for the search.
- Enter the file name or other text to search in the Text field.
- Click on Search.
The search results will display matching entries from the selected log file.
Tip: The notes that CSF provides may come in handy when looking through logs, as they often contain context about security events and blocked connections.