🐧 VistoShield
Server Edition

The modern replacement for CSF/LFD. Protect your Linux server with a powerful firewall daemon featuring nftables, login failure detection, bot blocking, country restrictions, and IP reputation — with optional EU-hosted cloud dashboard for centralized management.

Get Started → Compare to CSF

From €149/server/year. GPL-2.0 license.

Server Security Features

Everything you need to protect your Linux server, built into a single daemon.

🔥

Dual Firewall Backend

Native nftables support with automatic iptables/ip6tables fallback. VistoShield detects your kernel capabilities and uses the best available backend. SYN flood protection, connection tracking, and ICMP rate limiting are built in. Switch backends without changing your configuration.

🔍

Login Failure Detection

Monitors 9 services in real time: SSH, FTP, POP3, IMAP, SMTP, DirectAdmin, cPanel, Webmin, and ModSecurity. Configurable per-service thresholds with automatic temporary or permanent blocking. Progressive lockout intervals prevent repeated offenders.

🤖

Bot Detection & Rate Limiting

143+ bot signatures with a behavioral scoring engine that rates each visitor from 0 to 100. rDNS verification ensures real search engine bots pass through. Block, challenge, or monitor suspicious traffic. Per-IP rate limiting prevents resource abuse.

🌍

Country Blocking

CC_DENY and CC_ALLOW directives let you block or allow entire countries with a single config line. CIDR lists are automatically downloaded and updated. Supports both IPv4 and IPv6 country ranges. Compatible with CSF country blocking syntax.

📊

IP Reputation

FireHOL integration with auto-updated blocklists from multiple threat intelligence sources. Known malicious IPs are automatically detected and rate-limited or blocked at the firewall level before they reach your applications.

🛡️

Port & Connection Management

Fine-grained TCP and UDP port filtering with separate allow lists for incoming and outgoing traffic. ss-based IPv6-aware connection monitoring tracks connections per IP. Configurable connection limits prevent resource exhaustion.

🧪

Testing Mode

Enable testing mode to safely experiment with firewall rules without risk of locking yourself out. Rules are automatically cleared after a configurable interval (default: 5 minutes). Essential for remote server administration.

📡

Full IPv6 Support

Complete IPv6 support across all features: blocking, whitelisting, CIDR matching, country ranges, and connection tracking. No half-measures — IPv6 is treated as a first-class citizen throughout the entire codebase.

Control Panel Support

Manage VistoShield from your favorite hosting control panel.

DirectAdmin

Full admin and user-level plugin with real-time dashboard, firewall settings, blocked IP management, allow/deny lists, bot signature editor, and live log viewer. Admin-level server-wide controls and per-user account protection.

Available

Webmin

Complete Webmin module with configuration editor, blocked IP management, signature management, deny list editor, and service status monitoring. Integrates natively with Webmin's interface and authentication.

Available

cPanel / WHM

WHM plugin for server-wide firewall management across all accounts. cPanel interface for individual account protection, IP management, and security event monitoring.

Coming Soon

How It Works

Deploy in minutes. Core protection runs locally. Optional cloud dashboard for centralized management.

Install

One command installs VistoShield on your Linux server. The installer detects your OS, installs dependencies, sets up the daemon, and configures your firewall backend automatically.

curl -fsSL https://vistoshield.com/install.sh | bash

Configure

Edit vistoshield.conf directly or use the DirectAdmin/Webmin control panel plugin. Enable features, set LFD thresholds, add trusted IPs, configure country blocking, and tune bot detection sensitivity.

Monitor

Real-time dashboard shows firewall status, blocked IPs, and security events. Configure email alerts for critical events. Receive daily security reports with attack summaries and recommendations.

Why Switch from CSF?

VistoShield is the modern, actively maintained alternative to ConfigServer Security & Firewall.

Feature	CSF/LFD	VistoShield
nftables support	Limited	Full native support with automatic fallback
IPv6	Partial	Complete (blocking, whitelisting, CIDR)
Bot detection	None	143+ signatures + behavioral scoring
WordPress integration	None	5 dedicated security modules via socket
Country blocking	Yes	Yes (auto-updated CIDR lists, IPv4 + IPv6)
IP reputation	Basic	FireHOL + multi-source threat intelligence
Connection tracking	Yes	ss-based, IPv6 aware, per-IP limits
Web UI	cPanel/WHM only	DirectAdmin + Webmin + cPanel
Testing mode	Manual	Auto-clear with configurable interval
Active development	Slow	Active (2024+), open source

Complete the Stack with the WordPress Plugin

VistoShield Server Edition protects your infrastructure. Add the WordPress plugin for application-level security.

🛡

12 Free Security Modules

Firewall, scanner, bot detector, login guard, activity log, password policy, API security, vulnerability patcher, and incident response. All included in the VistoShield plugin on wordpress.org.

See All Modules →

⚡

Server + WordPress Integration

WordPress WAF blocks escalate to server-level nftables/iptables rules. Bot detection data syncs between layers. One security stack, two levels of protection.

📋

Unified Visibility

Server-level firewall logs and WordPress security events in one view. Incident Response playbooks coordinate across both layers for faster containment.

Server Pricing

Choose the plan that fits your needs.

1 server
Full CLI + GUI panels
DirectAdmin + Webmin + cPanel
Email & ticket support
All updates included
CSF migration wizard

Get Server Edition

30-day money-back guarantee

Best for Agencies

5+ servers
Everything in Server Edition
Central management dashboard
Cross-server alerts
Bulk configuration sync
Priority support

Get Multi Server