+1 (581) 518-8881
sales@jonesolutions.com
Client Login
Firewall Management Plugin

JS UFW Manager

Professional UFW & Fail2Ban management directly from your control panel. DDoS protection, SMTP blocking, kernel-level IP blocklist with up to 2 million+ blocked threats, and brute force defense — all without touching the command line.

✓ DirectAdmin✓ cPanel / WHM✓ Ubuntu✓ Debian✓ AlmaLinux✓ CloudLinux

🎁 JS UFW Manager is FREE with our Server Management Service

View Server Management Plans
Plugin Preview

Screenshots

Main Dashboard — UFW Rule Management
Main Dashboard — UFW Rule Management
Fail2Ban Control Center
Fail2Ban Control Center
DDoS Protection Templates
DDoS Protection Templates
SMTP Block Configuration
SMTP Block Configuration
IP Tracking & Lookup
IP Tracking & Lookup
IP Blocklist — Live Threat Intelligence & Drop Feed
IP Blocklist — Live Threat Intelligence & Drop Feed
Core Features

Everything to protect your server

🔥

UFW Firewall Management

  • Block or whitelist IPs and CIDR ranges instantly
  • Allow or deny specific ports (TCP/UDP/any)
  • View, search, and delete active rules
  • One-click Cloudflare IP whitelist
  • Full IPv4 and IPv6 support
🚫

Fail2Ban Control Center

  • View all active jails and banned IPs
  • Set bantime, findtime, and maxretry per jail
  • Global default settings for all jails at once
  • Add/remove IPs from ignore lists persistently
  • Unban IPs directly from the dashboard
🛡️

DDoS Protection Suite

  • SYN flood, UDP flood, and ICMP blocking
  • Connection limiting per IP per port
  • Bogus TCP flag detection (XMAS, NULL, FIN scans)
  • Port scan detection and blocking
  • Connection limit IP whitelist for trusted clients
✉️

SMTP Block

  • Block unauthorized outgoing SMTP from PHP scripts
  • Forces scripts to route through the mail server binary
  • Root and trusted users are always allowed
  • Configure allowed users and groups
  • Allow local loopback SMTP for webmail apps
🗄️

IP Blocklist — Threat Intelligence

  • 370,000+ malicious IPs blocked by default
  • Powered by JS Blacklist + curated threat feeds
  • Scale up to 2,000,000+ IPs with custom feeds
  • Live drop feed — real-time blocked connection stream
  • Per-IP whitelist with instant ipset removal
🔍

IP Tracking & Lookup

  • Shows UFW rule status (ALLOW/DENY/LIMIT/REJECT)
  • Shows if IP is in the ipset blocklist
  • Shows all Fail2Ban jails where IP is banned
  • Unban from Fail2Ban directly from results
  • Remove from UFW rules with one click
  • Available to resellers with restricted access
DDoS Protection

One-click protection templates

Choose a preset template or fine-tune every individual setting. Rules are safely written to UFW without affecting your existing firewall configuration.

🟢

Basic

SYN flood protection + ICMP block + bogus TCP flags. Safe starting point for any server.

🌐

Web Server

Basic + connection limit on ports 80/443 + port scan detection. Ideal for web hosting servers.

💀

Aggressive

All protections with strict limits. Best for servers under active attack.

🎮

Gaming Server

High UDP burst tolerance + connection limits on game ports. Built for game hosting.

🚀

High Traffic

For busy dedicated servers with high legitimate traffic volumes.

ℹ️ All DDoS protection rules include rate-limited logging so you can monitor blocked attacks in real time using journalctl. Log prefixes like JS-UFW-SYNFLOOD, JS-UFW-PORTSCAN, and JS-UFW-BOGUS make it easy to identify attack types.
Threat Intelligence

Kernel-Speed IP Blocklist

The blocklist feature combines multiple curated threat intelligence feeds — including JoneSolutions' own JS Blacklist — into a single ipset hash table loaded directly into the Linux kernel. Blocking happens before packets reach UFW, Fail2Ban, or any application, at line speed with zero CPU overhead per blocked packet.

🛡️

370,000+ IPs by Default

Botnets, port scanners, brute force attackers, Tor exit nodes, spam sources, and more. Add optional custom feeds to scale up to 2,000,000+ blocked IPs.

📡

Live Drop Feed

Real-time stream of blocked IPs as they attempt to connect, auto-refreshing every 3 seconds. Whitelist any IP instantly with one click.

Zero Performance Impact

ipset hash lookup is O(1) — blocking 2,000,000 IPs costs the same CPU as blocking 1. Runs at kernel speed before any application sees the packet.

🛡️ All blocklist updates use an atomic ipset swap — the old list stays active until the new one is fully loaded, so there is zero downtime or gap in protection during daily updates.
Security Architecture

Built securely from the ground up

Cython-Compiled Binary

The plugin core is compiled to a native .so binary using Cython, delivering near-C execution speed — typically 10-100x faster than interpreted Python.

SUID Binary for Root Operations

All privileged firewall operations go through a C-compiled SUID binary with a strict command whitelist and argument character validation. Shell injection is not possible.

Role-Based Permissions

Admins get full access. Resellers can only track IPs and unban from Fail2Ban. Users can only look up IPs. Enforced at both API and binary level.

Compatibility

Works on every major server setup

Pre-compiled for every Python version used in web hosting today. The plugin detects your Python version automatically.

Python 3.6
CentOS 7 / CloudLinux 7
Python 3.8
CentOS 7 IUS
Python 3.9
AlmaLinux 8 / CloudLinux 8
Python 3.10
Ubuntu 22.04 LTS
Python 3.11
Debian 12 / AlmaLinux 9
Python 3.12
Ubuntu 24.04 / AlmaLinux 10
Python 3.13
Debian 13

Ready to secure your servers?

JS UFW Manager is FREE with our Server Management Service.

Get Server ManagementContact Sales
JoneSolutionsLogin