ConfigServer Security & Firewall (CSF) is a popular firewall plugin for WHM. If an IP address has been blocked by CSF (either manually or automatically by the firewall rules), you can quickly unblock it directly from the WHM interface without needing to use the command line.

Step 1: Log in to WHM

Open your browser and navigate to https://your-server:2087. Enter your root credentials to log in.

Step 2: Open CSF

In the left-hand menu, go to Home » Plugins » ConfigServer Security & Firewall.

Step 3: Use Quick Unblock

Scroll to the csf – Quick Actions section. Locate the Quick Unblock option.

Step 4: Enter the IP Address

In the text box next to Quick Unblock, enter the IP address you want to unblock (e.g., 192.168.1.100).

Step 5: Unblock the IP

Click the Quick Unblock button. CSF will immediately remove the IP from the deny list and reload the firewall rules.

Important Notes

  • CSF must be installed on your server for this option to appear in WHM. If you do not see the plugin, CSF is not installed.
  • The Quick Unblock action removes the IP from both the csf.deny file and the temporarily blocked list (csf.tempban).
  • If the IP keeps getting blocked, it may be triggered by CSF’s LFD (Login Failure Daemon) due to repeated failed login attempts. In that case, consider adding the IP to the allow list (csf.allow) instead, or investigate the source of the failed logins.
  • To add an IP to the permanent allow list, use the Quick Allow option in the same section.
  • You can view all currently blocked IPs on the Firewall Allow IPs and Firewall Deny IPs pages within the CSF interface.

Troubleshooting

  • Plugin not visible: CSF is not installed. You can install it by following the official ConfigServer documentation.
  • IP still blocked after unblocking: Check if the IP is in the csf.tempban list or if LFD is actively re-blocking it due to ongoing suspicious activity. Check /var/log/lfd.log for details.
  • Cannot access WHM from your own IP: If you accidentally blocked your own IP, you will need to unblock it via SSH by running csf -a your.ip.address "Unblock reason" or by editing /etc/csf/csf.deny directly.
Was this answer helpful? 0 Users Found This Useful (0 Votes)

Most Popular Articles

How to set Default maximum email quota for new packages via WHM?

The Default maximum email quota for new packages setting in WHM controls the maximum email...
How to set Default disk usage quota for new packages via WHM?

The Default disk usage quota for new packages setting in WHM lets you define a default disk space...
How to set Default bandwidth limit for new packages via WHM?

When you create a new hosting package in WHM, cPanel uses a default bandwidth limit if you don't...
How to change cPanel PHP max POST size via WHM?

The cPanel PHP max POST size setting controls the maximum size of HTTP POST requests that...
How to change cPanel PHP max upload size via WHM?

What is the cPanel PHP Max Upload Size? The cPanel PHP max upload size setting controls the...