The modern replacement for CSF/LFD. Protect your Linux server with a powerful firewall daemon featuring nftables, login failure detection, bot blocking, country restrictions, and IP reputation — all without any cloud dependency.
From €149/server/year. GPL-2.0 license.
Everything you need to protect your Linux server, built into a single daemon.
Native nftables support with automatic iptables/ip6tables fallback. VistoShield detects your kernel capabilities and uses the best available backend. SYN flood protection, connection tracking, and ICMP rate limiting are built in. Switch backends without changing your configuration.
Monitors 9 services in real time: SSH, FTP, POP3, IMAP, SMTP, DirectAdmin, cPanel, Webmin, and ModSecurity. Configurable per-service thresholds with automatic temporary or permanent blocking. Progressive lockout intervals prevent repeated offenders.
143+ bot signatures with a behavioral scoring engine that rates each visitor from 0 to 100. rDNS verification ensures real search engine bots pass through. Block, challenge, or monitor suspicious traffic. Per-IP rate limiting prevents resource abuse.
CC_DENY and CC_ALLOW directives let you block or allow entire countries with a single config line. CIDR lists are automatically downloaded and updated. Supports both IPv4 and IPv6 country ranges. Compatible with CSF country blocking syntax.
FireHOL integration with auto-updated blocklists from multiple threat intelligence sources. Known malicious IPs are automatically detected and rate-limited or blocked at the firewall level before they reach your applications.
Fine-grained TCP and UDP port filtering with separate allow lists for incoming and outgoing traffic. ss-based IPv6-aware connection monitoring tracks connections per IP. Configurable connection limits prevent resource exhaustion.
Enable testing mode to safely experiment with firewall rules without risk of locking yourself out. Rules are automatically cleared after a configurable interval (default: 5 minutes). Essential for remote server administration.
Complete IPv6 support across all features: blocking, whitelisting, CIDR matching, country ranges, and connection tracking. No half-measures — IPv6 is treated as a first-class citizen throughout the entire codebase.
Manage VistoShield from your favorite hosting control panel.
Full admin and user-level plugin with real-time dashboard, firewall settings, blocked IP management, allow/deny lists, bot signature editor, and live log viewer. Admin-level server-wide controls and per-user account protection.
AvailableComplete Webmin module with configuration editor, blocked IP management, signature management, deny list editor, and service status monitoring. Integrates natively with Webmin's interface and authentication.
AvailableWHM plugin for server-wide firewall management across all accounts. cPanel interface for individual account protection, IP management, and security event monitoring.
Coming SoonDeploy in minutes. No cloud dependency. Everything runs on your server.
One command installs VistoShield on your Linux server. The installer detects your OS, installs dependencies, sets up the daemon, and configures your firewall backend automatically.
curl -fsSL https://vistoshield.com/install.sh | bash
Edit vistoshield.conf directly or use the DirectAdmin/Webmin control panel plugin. Enable features, set LFD thresholds, add trusted IPs, configure country blocking, and tune bot detection sensitivity.
Real-time dashboard shows firewall status, blocked IPs, and security events. Configure email alerts for critical events. Receive daily security reports with attack summaries and recommendations.
VistoShield is the modern, actively maintained alternative to ConfigServer Security & Firewall.
| Feature | CSF/LFD | VistoShield |
|---|---|---|
| nftables support | Limited | Full native support with automatic fallback |
| IPv6 | Partial | Complete (blocking, whitelisting, CIDR) |
| Bot detection | None | 143+ signatures + behavioral scoring |
| WordPress integration | None | 5 dedicated security plugins via socket |
| Country blocking | Yes | Yes (auto-updated CIDR lists, IPv4 + IPv6) |
| IP reputation | Basic | FireHOL + multi-source threat intelligence |
| Connection tracking | Yes | ss-based, IPv6 aware, per-IP limits |
| Web UI | cPanel/WHM only | DirectAdmin + Webmin + cPanel |
| Testing mode | Manual | Auto-clear with configurable interval |
| Active development | Slow | Active (2024+), open source |
Choose the plan that fits your needs.
30-day money-back guarantee
30-day money-back guarantee
Install VistoShield Server Edition in under a minute.
curl -fsSL https://vistoshield.com/install.sh | bash
Supported OS: Ubuntu 22.04+, Debian 12+, AlmaLinux 8+, CentOS Stream 9+
Requirements: Root access, systemd, nftables or iptables
The installer will:
Need the WordPress plugins too? Explore WordPress Edition →