Server Setup

Basic configuration to get you started
• Tweak Settings optimization (50+ settings)
• EasyApache 4 profile (PHP 8.1/8.2/8.3)
• PHP-FPM handler configuration
• AutoSSL with Let's Encrypt
• Basic Feature List setup
• Standard port configuration
• LF_TRIGGER & LF_SSHD settings
• CT_LIMIT connection tracking
• Basic DENY_IP_LIMIT rules
• innodb_buffer_pool_size tuning
• max_connections optimization
• Basic slow query logging

• cPanel/WHM
• CSF Firewall
• MySQL/MariaDB

Production-ready configuration
• Apache MPM Worker/Event tuning
• MaxRequestWorkers & ServerLimit
• KeepAlive optimization
• Compiler access restrictions
• Shell fork bomb protection
• Background Process Killer
• SYNFLOOD & PORTFLOOD protection
• PT_USERMEM & PT_USERTIME limits
• LF_DISTATTACK distributed attack detection
• BLOCK_REPORT & MESSENGER service
• Custom PORTS_TCP/UDP rules
• Proactive Defense (Kill Mode)
• Malware scan schedule configuration
• Reputation Management ON
• Hardened PHP settings
• Auto-cleanup rules
• SPF record configuration
• DKIM signing setup
• DMARC policy
• rDNS verification

• Everything in Starter, PLUS
• cPanel/WHM Advanced
• CSF Advanced
• Imunify360
• Email Deliverability

High-performance & security hardening
• LVE limits per package (CPU, PMEM, IO, EP, NPROC)
• CageFS with skeleton directory
• PHP Selector (5.6 - 8.3)
• mod_lsapi connection pooling
• LSCache configuration
• QUIC / HTTP/3 enabled
• Connection & request limits
• Anti-DDoS settings
• WordPress cache rules
• innodb_log_file_size tuning
• innodb_flush_method = O_DIRECT
• tmp_table_size & max_heap_table_size
• thread_cache_size optimization
• Query cache configuration
• WebShield (CDN/Proxy detection)
• Captcha & Splash Screen
• IP reputation blocking threshold
• Custom malware signatures

• Everything in Business, PLUS
• CloudLinux (if licensed)
• LiteSpeed (if licensed)
• Performance Stack
• maxmemory-policy, socket connection • Redis
• -m memory, -c connections • Memcached
• opcache.memory_consumption, revalidate_freq • OPcache
• MySQL Advanced
• Imunify360 Advanced

Full-stack enterprise configuration
• Two-Factor Authentication enforcement
• cPHulk brute force settings
• Password strength requirements
• Security Questions enabled
• API token restrictions
• IP-based WHM access
• CC_DENY/CC_ALLOW country rules
• CLUSTER_SENDTO for multi-server
• DYNDNS support
• Custom regex patterns in csf.pignore
• Advanced LF_DIRWATCH
• MySQL Governor (dbuser limits)
• CageFS mount points customization
• LVE-stats history & email alerts
• Reseller limits configuration
• proxy_cache configuration
• fastcgi_cache for PHP
• Gzip & Brotli compression
• Browser caching headers
• SSL session caching
• Complete configuration PDF report
• Maintenance schedule & checklist
• Troubleshooting quick reference
• Configuration backup scripts
• Post-setup review ticket (Q&A)

• Everything in Professional, PLUS
• WHM Security Hardening
• CSF Enterprise
• CloudLinux Advanced
• Nginx Reverse Proxy
• Documentation & Handover