Our next version of Imunify360 (around a month from now) should integrate nicely with LFD/CXS. This way you will be able to get the best of both worlds.

That sounds great. Looking forward to it!

Do you by the way plan features like this ?
Usually (90% - 10% it's phishing) when an account gets infected/hacked bots or malicious users are uploading mail scripts. And the usual Top #1 problem for us (My personal opinion of course) is dealing with outgoing mail spam.

CSF/LFD notifies us when someone / some script is sending mass mails (variable to send alert after x mails), localrelay, authrelay, and when the queue is above x limit.

When I get the warning I know something is wrong and start investigation. If not, usual outcome is server IP blacklisted in multiple RBLs -and other users can't send mails-, abuse mails from datacenters, IP block, or whole server block (for one account). So I believe it's crucial to know what's happening with outgoing mails and queues.

We are eager to go full throttle on Imunfiy360 if and when:

• it is fully integrated with CSF
  
• those exciting features like Malware Detection and Intrusion Detection and Protection System are functional
  
• it is able to give you more incident report that you can actually use
  
• and Web Applications Sandboxing
  

If Imunify360 can come out with these, it will be the ultimate game-changer.
I guess that these will be available with next release and looking forward to that.

I was informed by email that Imunify360 now supports CSF integration, however I don't see a way to switch back to using it.

Is the only way to uninstall Imunify360, reactivate CSF, and then reinstall Imunity360 to get the CSF integration working?

I was informed by email that Imunify360 now supports CSF integration, however I don't see a way to switch back to using it.

Is the only way to uninstall Imunify360, reactivate CSF, and then reinstall Imunity360 to get the CSF integration working?

Hi! Since version 1.1.3 if user has Imunify360 agent running, he can just start csf (csf -e) and in about 30 seconds imunify360 will switch to csf integration mode. To check it, user can visit Firewall->White list page of Imunify360 UI and check if there is a "White list management disabled" warning.

Great, that worked. Support had told me to re-install which I thought was likely unnecessary.

Can you clarify exactly how the CSF integration works?

CSF/LFD takes back over as the main firewall and Imunify just handles your gray listed IPs for herd protection?

Can you clarify exactly how the CSF integration works?

CSF/LFD takes back over as the main firewall and Imunify just handles your gray listed IPs for herd protection?

Yes, CSF acts as primary firewall and Imunify360 only maintains gray list. You can get more details here https://docs.imunify360.com/index.html?csf_integration.htm

Our next version of Imunify360 (around a month from now) should integrate nicely with LFD/CXS. This way you will be able to get the best of both worlds.

I see no mention of integration with CXS. Has this been accomplished?

Thanks

I see no mention of integration with CXS. Has this been accomplished?

No integration with CXS is planned as imunify360 has all features CXS does.

It would be nice for Immunify360 to have a CSF and CXS uninstall option. Once hosting companies like us are comfortable that I360 is on par with CSF triggers, alerts, etc. that we can sundown CSF and CXS.