@Stealth, please, continued with your security tricks! 😃
What else do you suggest?
First, how do you suggest using Fail2ban when we have Cloudflare CDN? Well, we know that it is not possible to identify visitors' IPs.
So far I've done this:
-I added the sites to cloudflare and activated the proxy
-HTTPS and domain to access aapanel
-Disable unnecessary ports
-I uninstalled the email server and locked the doors
-Cloudflare IPs added in UFW
-UFW entry is set to 'denied'
-Output from UFW is set to 'allowed'
-Phpmyadmin is configured as SSL
What else can I do? Another question, what do you know about cloudflare's Zero Trust service, does this apply? What other safety suggestions can you give me?