This is one of my idea to use Cloudflare Web Application Firewall (WAF) and Cloudflare Turnstile (Captcha) to add some extra security layer to your default wordpress login page by stopping most automated login attempt (or brute force).
There are various reasons why CSF firewall may make your WHM / server slow.
Here are some personal tips from me.
To install ConfigServer Security & Firewall (CSF) in WHM, please run this commands in your SSH terminal one by one.
tar -xzf csf.tgz
After it completes, there is a new menu in WHM which is under “Plugins” category, named “ConfigServer Security & Firewall”. 🙂