CSF allow rules [split thread]

While installing csf, it will change default policy to DROP so all requests to server other than open ports in csf will be blocked.

In your case, you need to block all requests from internet and only allow US IP’s. So try remove the required ports ( 80 and 443 for http ) from the CSF TCP_IN and allow US UP using CC_ALLOW = “US” to accept request from US only.

Please make sure to whitelist your IP in allow list while doing these tests.