online
panel / dashboard
23%
0%
23%
Web Server
Manage all websites — PHP · Node · Proxy · Go · Python
Site name Status Backup PHP / Engine Quick action Expiration SSL SSL Requests/s
Loading…
0 sites total
Engine Config
Global configuration for web server: engine, PHP, performance, security and monitoring
Select Web Engine
N
Nginx
Standalone · Port 80/443
Apache
Standalone · .htaccess
Nginx + Apache
Nginx proxy → Apache
OpenLiteSpeed
HTTP/3 native · LSAPI
Worker config
per worker
Linux event model
Connection & Keepalive
s
s
s
s
Compression (gzip)
KB · min file size to compress
1–9 (compression level)
Buffers & Hash
KB
KB
Status & Control
...
Static file serving
Kernel-level transfer
Send headers with data
Disable Nagle algorithm
Config history
07/06 10:24 — added gzip brotli
nginx.conf · admin
06/06 09:00 — update SSL config
nginx.conf · admin
05/06 15:30 — worker config
nginx.conf · admin
Engine config file
nginx.conf/etc/nginx/nginx.conf
nginx mime.types/etc/nginx/mime.types
PHP Versions
Other runtimes
Loading...
php.ini ·
Pick a PHP version on the left to view/edit its config. Each site can override individually.
s
Enable in dev environment
FPM pool ·
restart sau N request
s
PHP config files
PHP Modules ·
Loaded:
Install more / manage:
MariaDB / MySQL
Keep MariaDB from being killed under high RAM
Allow connections from outside (binds 0.0.0.0 + opens port 3306). Keep DB users limited to trusted hosts.
MB
s
Optimization
MB · index buffer
MB · 0 = off
MB
MB
KB · / connection
KB
KB
KB
KB
KB · multiple of 4
≤ 2048
Config file
my.cnf /etc/mysql/my.cnf
50-server.cnf /etc/mysql/mariadb.conf.d/50-server.cnf
RRedis
MB
PostgreSQL
MongoDB
PHP OPcache ·
MB
Disable in production
s
MB
RRedis object cache
Memcached
Compression
6
Connection
s
Protocol
HTTP/2 & HTTP/3 are configured at the engine listener/vhost level. This table shows the actual status.
WAF — ModSecurity + OWASP CRS
Loading...
System security
Fail2ban, Firewall (UFW), IP block/whitelist, SSH, 2FA... belong to system security and managed at Security Center.
Server Hardening
server_tokens off / ServerTokens Prod
nosniff
Service log
Only show logs of service trong Engine Config (web engine, PHP-FPM, MariaDB, Redis). the website access.log / error.log see in Monitor → Log or per site → Response log.
Websites
0
0 online · 0 offline
live
CPU
0%
— cores
live
RAM
0 GB
/ — GB
live
Disk
0GB
/ — GB
live
Quick Access
Add website
Monitor
File Manager
phpMyAdmin
SSH Terminal
Backup
Websites0 sites
DomainStatusPHPSSL
Recent Logins
Last 10 sessions
Recent Tasks
Configuration history
CPU
0%
— cores
RAM
0 GB
/ — GB
Disk
0 GB
/ — GB
Network
0 Mb/s
IN — · OUT —
Load avg
0
5m · 15m
Uptime
— processes
Statistics
CPU usage
Server load
Memory usage
Network traffic
Services
ServiceStatusPID(s)Memory Usage
Top by CPU
PIDProcessCPURAM
Top by RAMTop 12
PIDProcessCPURAM
Log viewer
Domain
2
Web Server
3
Database
4
SSL & HTTPS
5
App & Deploy
6
Confirm
Domain & Webroot
Multiple domains separated by commas
Create webroot if not exists
Subdomain
Declare individual subdomain
Route all subdomains to 1 vhost
HTTP Basic Auth
Protect site with username/password
Web Engine
Nginx
High performance
Apache
.htaccess flexible
Nginx+Apache
Combined pro
OpenLiteSpeed
HTTP/3 native
PHP Runtime
Run FPM under separate user
Performance
Gzip compression
Reduce ~70% bandwidth
Brotli
~20% better than Gzip, requires HTTPS
HTTP/2
Multiplexing, header compression
Browser cache
JS/CSS 1y, images 30d
Security Layer
WAF (ModSecurity)
OWASP CRS — blocks SQLi, XSS, LFI
Block sensitive files
.env, .git/, wp-config.php...
Hide server info
Hide Nginx version, server_tokens off
Rate limiting
Limit req/s per IP
URL Rewrite
Force HTTPS redirect
http:// → https:// automatic (301)
Create database
Auto-create DB, user and assign permissions
Redis & Cache
Use Redis as cache backend
Cache PHP output at Nginx layer
Redis running: 127.0.0.1:6379 · 128MB / 512MB
SSL Certificate
Let's Encrypt
Free · Auto-renew · 90 d
Custom cert
Upload from DigiCert, Comodo...
Let's Encrypt selected
DNS must point to this server before SSL can be issued. Panel auto-verifies and installs cert after site creation.
Requires DNS challenge
HTTPS & Security Headers
http:// → https:// automatic
www.domain.com → domain.com
Strict-Transport-Security header
X-Frame-Options, CSP, Referrer-Policy
Install app (1-click)
WordPress
Latest 6.x
Laravel
v11.x
Node.js
PM2 managed
Static / Blank
Nginx config only
Git Auto-Deployoptional
Webhook from GitHub/GitLab auto-pulls and restarts
https://panel.srv-01.com/webhook/——
Review configurationTest before creating website
Domain
mywebsite.com
Webroot
/www/wwwroot/mywebsite.com
Web engine
Nginx
PHP version
PHP 8.3-FPM
Database
mywebsite_db @ MariaDB
SSL
Let's Encrypt · auto-renew
WAF
ModSecurity · blocking
Gzip / Brotli
on
HTTP/2
on
HSTS
on
App
WordPress latest
Git deploy
off
After clicking create:
1. Panel creates Nginx config, webroot directory and database automatically
2. Configures WordPress and DB connection automatically
3. Issues SSL from Let's Encrypt (DNS must point to server)
4. Reload Nginx to apply new config · Estimated: ~60s
Select a feature from the list to view configuration details
Installed
packages
Running
services
Available
packages
Apache
Web Server · v2.4.58
Free
Flexible web server with .htaccess support and extensive module ecosystem.
AWS S3 CLI
Cloud Storage · v2.0
Free
Backup websites and databases to S3-compatible object storage.
ClamAV
Antivirus · v2.1
Free
Open-source antivirus — detect trojans, viruses, malware, webshells.
Fail2ban active update
Security · v1.1.0
Free
Auto-ban IPs with repeated auth failures — SSH, FTP, web admin.
MariaDB running update
Database · v10.11.6
Free
MySQL-compatible relational database — high performance, open source.
MongoDB
NoSQL · v8.0.x
Free
NoSQL document database — flexible schema, horizontal scaling.
N
Nginx running
Web Server · v1.24.0
Free
Lightweight, high concurrency web server. Low memory usage, event-driven architecture.
Node.js running
Runtime · v20 LTS
Free
JavaScript runtime (Node.js v20 LTS) installed from the official tarball.
PM2
Process manager
Free
Production process manager for Node.js: auto-restart, logs, clustering. Requires Node.js.
OpenLiteSpeed
Web Server · v1.7.19
Free
High-performance with LSAPI PHP, native HTTP/3 and .htaccess compatibility.
PHP 8.3 running update
Runtime · v8.3.7
Free
PHP 8.3 with FPM — JIT compiler, named args, typed properties.
PostgreSQL
Database · v16.x
Free
Advanced open source SQL database with full compliance and extensions.
Python 3
Runtime · v3.12.x
Free
Python via pyenv — run Django, Flask, FastAPI via Gunicorn/uWSGI.
R
Redis running update
Cache · v7.2.3
Free
High-performance in-memory key-value store for caching and sessions.
UFW Firewall
Firewall · v2.8
Free
Simple iptables frontend — open/close ports, IP rules, country blocks.
Showing 16 packages
Local backups
Local storage used
Backup jobs (enabled)
Destinations (remote)
Recent runs
View all →
NameSizeLast ModifiedTypePermissions
Loading…
SSL Certificates
loading…
Reverse Proxy Domains
loading…
loading…
Loading…
Loading…
Per-site SFTP accounts — chrooted to the site folder, no shell access. Connect via SFTP on port 22. Panel admin login is in Settings.
Loading…
Panel Settings
Account, security entrance, port, session and access control for the panel itself
loading…
Migration
Export a website (files + database + users + vhost/PHP + SSL) and import it on another server
Integrations
Connect Telegram for server alerts and notifications
Telegram alerts
CPU RAM Disk
How to set up: 1) Message @BotFather on Telegram → /newbot → copy the bot token. 2) Get your Chat ID: message your bot, then open https://api.telegram.org/bot<token>/getUpdates and read chat.id (or use @userinfobot). For a group, add the bot and use the group id (starts with -100).
Add new website
Fill in the details to create and auto-configure the website
1
Domain
2
Server
3
Database
4
SSL
5
App
Domain & Webroot
Create if not exists
Web Engine
N
Nginx
High performance
Apache
.htaccess flexible
OpenLiteSpeed
HTTP/3 native
Static
HTML/CSS/JS
PHP Version
Performance
Reduce ~70% bandwidth
Better than Gzip, requires HTTPS
Security
OWASP CRS v4 (coming soon)
.env, .git/, wp-config
Create Database
Cache
Checking Redis…
SSL Certificate
None
HTTP only
Let's Encrypt
Free · Auto-renew
Custom cert
Upload from CA
DNS must point to the server before SSL can be issued. Panel auto-verifies after site creation.
HTTPS Settings
Install app (1-click)
WordPress
Latest 6.x
Laravel
v11.x
Node.js
auto reverse-proxy
Python
Flask + Gunicorn
Blank
Nginx config only
Git Auto-Deploy (optional)
Configuration summary
Domain
Engine Nginx
PHP PHP 8.3
SSL Let's Encrypt
Enter domain to get started
Activity log
LIVE
Loading…
Delete website
Delete Nginx vhost + site record (reload Nginx). Cannot be undone.