Differences

This shows you the differences between two versions of the page.

--- litespeed_wiki:config:enable_quic [2019/03/26 18:00]
Jackson Zhang [UDP rate limiting option in CSF should be disabled]
+++ litespeed_wiki:config:enable_quic [2019/07/18 12:49]
Eric Leu [cPanel]
@@ Line 27: / Line 27: @@
 If there is no extra firewall such as CSF, UDP 443 should be enabled by default. If CSF is used, you need to enable it at the CSF level.
+ConfigServer Security & Firewall -> csf - ConfigServer Firewall -> Firewall Configuration -> IPv4 Port Settings -> UDP_IN and UDP_OUT should enable ''443''.
 {{ :litespeed_wiki:config:udp-443-csf-quic.png?400 |}}
-Also make sure that ''UDPFLOOD'' is set to 0.
+Also make sure that ''UDPFLOOD'' is set to Off ''0''.
 ==== Plesk ====
 If a firewall is activated, you need to enable UDP 443 manually.
@@ Line 114: / Line 118: @@
 ==== LF_SPI needs to be turned off when CSF used ====
-''LF_SPI'' in CSF should be turned off.
+''LF_SPI'' in CSF should be turned off (set  ''LF_SPI'' = ''0'').
-''LF_SPI'' option configures csf iptables as a Stateful Packet Inspection (SPI) firewall – the default. If the server has a broken stateful connection tracking kernel then this setting can be set to 0 to configure csf iptables to be a Static firewall, though some funtionality and security will be inevitably lost.
+According to CFS, ''LF_SPI'' option configures csf iptables as a Stateful Packet Inspection (SPI) firewall – the default (which means ''LF_SPI'' = ''1'' by default). If the server has a broken stateful connection tracking kernel then this setting can be set to 0 to configure csf iptables to be a Static firewall, though some funtionality and security will be inevitably lost.
+{{ :litespeed_wiki:config:litespeeed-quic-disable-spi-in-csf.png?800 |}}