PxShield Configuration

PxShield is the Pyxsoft component in charge of receiving web requests from the outside, processing them and blocking those identified as cyber-attacks.

Most configurations are done directly within the Pyxsoft graphical interface.

However, there are some configurations that must be made using the ini file.

The pxshield.ini file

If it does not exist, you must create the /etc/pxshield.ini file.

Enable GZIP compression

Since pxshield acts as a proxy, you will notice that if you enable gzip compression on the main web server (apache, nginx) only some files are sent in compressed form, but .js, .css, and other files are sent uncompressed.

This is because pxshield does not proxy all requests, but some are served directly. This is done in order to avoid overloading the web server, leaving it mainly the task of generating dynamic content.

To enable gzip compression in Pxshield, you must add the following line in the configuration file /etc/pxshield.ini:

EnableGZIP = On

Then restart the service with the following command:

systemctl restart pxshield