JS UFW Manager
Professional UFW & Fail2Ban management directly from your control panel. DDoS protection, SMTP blocking, IP management, and brute force defense — all without touching the command line.
🎁 JS UFW Manager is FREE with our Server Management Service
View Server Management PlansScreenshots
Everything to protect your server
UFW Firewall Management
- Block or whitelist IPs and CIDR ranges instantly
- Allow or deny specific ports (TCP/UDP/any)
- View, search, and delete active rules
- One-click Cloudflare IP whitelist
- Full IPv4 and IPv6 support
Fail2Ban Control Center
- View all active jails and banned IPs
- Set bantime, findtime, and maxretry per jail
- Global default settings for all jails at once
- Add/remove IPs from ignore lists persistently
- Unban IPs directly from the dashboard
DDoS Protection Suite
- SYN flood, UDP flood, and ICMP blocking
- Connection limiting per IP per port
- Bogus TCP flag detection (XMAS, NULL, FIN scans)
- Port scan detection and blocking
- Connection limit IP whitelist for trusted clients
SMTP Block
- Block unauthorized outgoing SMTP from PHP scripts
- Forces scripts to route through the mail server binary
- Root and trusted users are always allowed
- Configure allowed users and groups
- Allow local loopback SMTP for webmail apps
IP Tracking & Lookup
- Shows UFW rule status (ALLOW/DENY/LIMIT/REJECT)
- Shows all Fail2Ban jails where IP is banned
- Unban from Fail2Ban directly from results
- Remove from UFW rules with one click
- Available to resellers with restricted access
Auto-Update System
- Daily cron checks for new versions automatically
- Detects Python version and downloads correct binary
- License key preserved across all updates
- Detects Python upgrades and re-downloads matching binary
- Backup of previous version kept during updates
One-click protection templates
Choose a preset template or fine-tune every individual setting. Rules are safely written to UFW without affecting your existing firewall configuration.
Basic
SYN flood protection + ICMP block + bogus TCP flags. Safe starting point for any server.
Web Server
Basic + connection limit on ports 80/443 + port scan detection. Ideal for web hosting servers.
Aggressive
All protections with strict limits. Best for servers under active attack.
Gaming Server
High UDP burst tolerance + connection limits on game ports. Built for game hosting.
High Traffic
For busy dedicated servers with high legitimate traffic volumes.
journalctl. Log prefixes like JS-UFW-SYNFLOOD, JS-UFW-PORTSCAN, and JS-UFW-BOGUS make it easy to identify attack types.Built securely from the ground up
Cython-Compiled Binary
The plugin core is compiled to a native .so binary using Cython, delivering near-C execution speed — typically 10-100x faster than interpreted Python.
SUID Binary for Root Operations
All privileged firewall operations go through a C-compiled SUID binary with a strict command whitelist and argument character validation. Shell injection is not possible.
Role-Based Permissions
Admins get full access. Resellers can only track IPs and unban from Fail2Ban. Users can only look up IPs. Enforced at both API and binary level.
Works on every major server setup
Pre-compiled for every Python version used in web hosting today. The plugin detects your Python version automatically.
Ready to secure your servers?
JS UFW Manager is FREE with our Server Management Service.