20 Tips to Set Up Your Enhance Server Like a Pro

Setting up your Enhance server can feel like an overwhelming task, but with the right approach, you can master it like a pro. Whether you’re a seasoned admin or just getting your feet wet, these tips will make your life easier and your server run smoother. Let’s dive in.

1. Choose Your Server Provider Wisely

It might seem like common sense, but you’d be surprised how many people opt for the cheapest VPS they can find during a Black Friday sale. Don’t fall into that trap. While the low price might seem appealing, compromising on quality can lead to reliability issues and poor performance. Instead, consider Hetzner—a trusted provider known for its exceptional service, robust infrastructure, and value-packed pricing that delivers long-term peace of mind.

2. Use a VPS for Your Main Enhance Control Panel

Always deploy your main Enhance Control Panel on a VPS rather than a dedicated server. A VPS provides critical features like snapshot backups, which can save you from potential disasters. Since your Main Control Panel server is mission-critical, uptime and scalability are essential. With a VPS, you can easily adjust resources as your needs grow, ensuring optimal performance and reliability.

3. Database Role Optimization

For optimal performance, it’s best to keep the database role on the same app server. This minimizes latency and simplifies configuration. If you prefer to separate the database role onto a dedicated server, ensure it’s located in the same data center and connected via a private network. This setup allows for fast, secure communication between servers without compromising performance.

4. Set Up SSH Keys and Disable Password Login

Securing your server starts with SSH keys. Here’s how to set them up and disable password login:

1. Generate an SSH key pair:
   ssh-keygen -t ed25519
   (Ed25519 is recommended for its security and performance.)
2. Copy the public key to your server:
   ssh-copy-id root@<server-ip>
   If password login is disabled, manually copy your public key (e.g., ~/.ssh/id_ed25519.pub) to the ~/.ssh/authorized_keys file on the server.
3. Test your connection:
   ssh root@<server-ip>
4. Disable password login:
   sudo sed -i 's/#PasswordAuthentication yes/PasswordAuthentication no/' /etc/ssh/sshd_config

Pro Tip: Always verify that your key works before disabling password login to avoid locking yourself out!

5. Set Your Server’s Timezone and Hostname

Setting the correct timezone and hostname for your server isn’t just about personalization—it’s essential for proper logging, scheduling, and system identification. Having the right timezone ensures that timestamps in logs and scheduled tasks align with your region, making troubleshooting and maintenance much easier. A clear hostname helps you quickly identify servers in your infrastructure, reducing confusion in multi-server setups.

Here’s how to set them:

1. Set the timezone:
   sudo timedatectl set-timezone America/New_York
   Adjust the timezone to your region. Find Your Timezone Here.
2. Set the hostname:
   sudo hostname server1.yourdomain.com

These simple steps help keep your server organized and running smoothly while avoiding potential issues with logs or task management.

6. Disable SWAP if Using New Owl AutoMySQL

If you’re using the new cPFence Owl AutoMySQL module, disabling SWAP is highly recommended. Owl AutoMySQL leverages advanced resource management techniques, similar to CloudLinux MySQL Governor, to optimize database performance. These techniques work best in environments where SWAP is disabled, ensuring smoother and more efficient operation. For more details on why this is beneficial and the recommended configurations, check out the full guide:
What is the Recommended SWAP Size with the New Owl AutoMySQL Module?

7. Prevent MySQL Abuse

Help your server stay cool by limiting the maximum simultaneous user connections. Edit my.cnf by going to Enhance Main CP >> Server >> Database >> Edit my.cnf and add the following:
max_user_connections=25
Restart MariaDB to apply the changes:
docker stop mariadb && docker start mariadb
Most hosting providers stick to 20-30 connections per user. Don’t go beyond 45 unless you’re feeling adventurous.

8. Automate Updates and Log Maintenance

Keeping your Linux server updated is crucial for maintaining security and performance. Enhance Server logs do need some improvements. We have even seen Enhance servers run out of space overnight due to logs growing out of control. Not fun. Save yourself the hassle of manual updates and log cleanup. Use this script: Automating Updates and Logs.

9. Embrace OpenLiteSpeed

OpenLiteSpeed (OLS) and Enhance are a match made in server heaven. OLS offers professional-grade performance, leaving competitors in the dust. One standout feature of Enhance is its seamless integration with OpenLiteSpeed (OLS). This powerful web server combines high performance and stability, making it an excellent choice for hosting environments. While other control panels, like DirectAdmin and CyberPanel, also support OLS, they often fall short: DirectAdmin’s OLS integration can be overly complex, and CyberPanel ,despite being free, struggles with Security issues and limited community support.

Enhance, in contrast, offers a polished and user-friendly experience, making OLS implementation straightforward and hassle-free. If you want to push your OLS performance further, especially on larger servers, and ensure settings persist across updates, explore this optimization guide:
How to Optimize OpenLiteSpeed for Large Shared Hosting Servers.

10. Optimize Your Application Settings for Security and Performance

To get the most out of your Enhance server, fine-tune your application settings for a balance of security and performance. Here’s how:

1. Access the Settings: Go to your main Enhance CP > Settings > Application.
2. Add or Update the Following Values:
   • date.timezone: America/New_York (Adjust this to your region. Refer to the List of Timezones).
   • default_socket_timeout: 60
   • disable_functions:
     exec,system,passthru,shell_exec,dl,popen,show_source,posix_kill,posix_mkfifo,posix_getpwuid,posix_setpgid,posix_setsid,posix_setuid,posix_setgid,posix_seteuid,posix_setegid,posix_uname,pcntl_exec,expect_popen
   • max_execution_time: 30
   • max_input_time: 60
   • max_input_vars: 1000
   • memory_limit: 256M
   • post_max_size: 128M
   • upload_max_filesize: 128M

These settings are optimized for general shared hosting environments, but feel free to adjust them based on your specific needs.

11. Set Up Your Package Resources Wisely

When configuring your hosting packages, it’s important to strike the right balance between resource allocation and server performance. Here’s our recommendation:

• Apply Proven Resource Limits: Follow the guidelines outlined here: How to Address High Server Load Issues with cPFence.

Some hosting admins fall into the trap of providing excessive resources, thinking it will improve customer satisfaction. However, even top-performing hosting companies don’t go overboard , and for good reason. Over-allocating resources often leads to inefficient usage and unnecessary strain on your servers.

If you choose the right server specifications and properly optimize your setup, you’ll be amazed at how much traffic these limits can handle. Whether it’s a high-traffic production environment or a stress test using tools like loader.io, the results can be impressive. Just be sure to implement the caching optimizations mentioned in this guide to maximize efficiency.

12. Use Enhance Btrfs Backups

If you’re not using Enhance’s Btrfs backup system, you’re missing out on a lot. This backup system is incredibly efficient, utilizing Btrfs technology to provide seamless, high-performance backups.

What makes it so great?

• Flexibility: Many Enhance users schedule daily backups, but some push the envelope by running backups every 4–6 hours.
• Efficiency: Thanks to its incremental backup method, only changes are backed up after the initial full backup, saving time and resources.
• Reliability: Btrfs ensures consistency and data integrity, making it a dependable choice for your backup needs.

If you’re looking for a robust and efficient backup solution, this is it, right in your Enhance CP, so make use of it and ditch those old-fashioned backups! Learn how to set it up here:
How to Set Up Your Enhance Server Backup VPS.

13. Utilize Redis and Install LiteSpeed Cache Plugin

Caching is a game-changer for server performance, yet most clients don’t have a clue what a caching plugin even does. That’s where you step in! By enabling Redis and installing the LiteSpeed Cache plugin, you can significantly improve your server’s performance, reduce resource consumption, and deliver faster page load speeds—resulting in happy users.

If you’re using cPFence, this process is even simpler. You can bulk install, configure, and manage the LiteSpeed Cache plugin across all WordPress sites server-wide with just a few commands:
cpfence --bulk-install-ls-plugin # Install the LiteSpeed plugin on all WordPress sites server-wide.
cpfence --bulk-configure-ls-plugin # Configure the LiteSpeed plugin with advanced presets and Redis enabled server-wide.
cpfence --bulk-enable-ls-heartbeat # Bulk enable and configure heartbeat options (disabled on frontend, minimal on backend).
cpfence --bulk-clear-litespeed-cache # Clear the LiteSpeed cache on all WordPress sites server-wide.

Why LiteSpeed Cache?

• All-in-One Optimization: It combines caching, Redis integration, and heartbeat optimization in one plugin—no need for separate solutions.
• OLS Customization: It’s highly optimized for OpenLiteSpeed servers, ensuring excellent performance.
• Efficiency: Clearing Redis and file caches becomes fast and seamless, saving you time and reducing server load with a single command.

By using LiteSpeed Cache, you’re not just optimizing performance—you’re also streamlining management for both you and your clients. It’s a massive time saver and a performance boost, all rolled into one efficient tool!

14. Manage MySQL Load Spikes

If you’re still dealing with load spikes, chances are they’re caused by long MySQL queries. Enhance currently doesn’t offer built-in limits for MySQL resource usage, so you’ll need to take a proactive approach.

Troubleshooting Steps:

1. Identify the users causing the issues.
2. Ask them to optimize their code—most of the time, it’s a poorly written plugin or theme in WordPress that’s to blame.

One-Click Solution with Owl AutoMySQL

For a faster and stress-free fix, use cPFence Owl AutoMySQL. This module automatically handles resource limits, preventing load spikes and keeping your server running smoothly. To enable it, just run:
cpfence --owl-automysql-on
Sit back and let the Owl handle it for you! For more details on how Owl AutoMySQL can simplify your life, check out the full guide:
Owl AutoMySQL: One-Click MySQL Resource Limits.

15. Optimize and Secure Your WordPress Sites

WordPress is an amazing CMS, but if you leave it at its default settings, you’re setting yourself up for trouble. Security vulnerabilities and performance issues can creep up fast. Here’s how to secure and optimize your WordPress installations like a pro:

Security Measures:

1. Disable file editing in WP Admin: Prevent unauthorized changes to core files.
2. Disable pingbacks: Stops a common method used in DDoS attacks.
3. Disable XML-RPC: Protects against brute-force attacks and resource abuse.
4. Use secure keys: Don’t skip adding secure keys to your wp-config.php file.
5. Disable WP Cron: Replace it with the more efficient built-in Enhance cron system.
6. Implement brute-force protections: Add CAPTCHA and rate-limiting to your login page.
7. Ensure correct file permissions: Avoid overly permissive settings that hackers exploit.
8. Harden your WordPress installation: Follow WordPress Security Practices to secure wp-includes, uploads, and wp-config.php.
9. Change the default admin username: Use a unique admin name to make brute-force attacks harder.
10. Disable risky code: Block XSS and risky content like iframes, embeds, or scripts in posts.
11. Enable integrity checks: Monitor changes to core files to detect hacking attempts.
12. Use a powerful antivirus: Ensure it offers automatic detection and alerting.
13. Optimize heartbeat settings: Use a plugin like LiteSpeed Cache or a heartbeat control plugin to stop load spikes caused by frequent AJAX calls.

One-Click Solution with WP AutoShield

If you’d rather skip the manual work, cPFence WP-AutoShield can handle all these optimizations and security measures for you with a single command:
cpfence --wp-autoshield-on
It’s a “set it and forget it” solution that gets your WordPress sites into top-notch shape without breaking a sweat. For more details, check out:
WP-AutoShield: One-Click Security for High-Performance Hosting.

16. Set Up Your Monitoring Solution

If you’re serious about your hosting business, a 24/7 uptime monitoring solution is a must-have. It ensures you’re always aware of your website’s availability and performance. Many hosting businesses use Uptime Kuma, a self-hosted monitoring tool:

• Uptime Kuma on GitHub: It offers a sleek UI and detailed stats for all your monitored sites.
• Pro Tip: Always update your monitoring list when acquiring new clients or when a client leaves. Staying organized ensures accurate monitoring.

Want an Autopilot Solution?

For those who’d rather avoid the manual work, cPFence MonitorPro is the perfect alternative. Getting started is incredibly simple—just flip the switch with this command:
cpfence --monitorpro-on
From there, MonitorPro handles everything for you, automatically:

• Adds new clients and removes canceled ones in real-time.
• Monitors websites 24/7 without requiring manual updates.

MonitorPro keeps your hosting business running smoothly, so you can focus on growing your services instead of managing uptime manually. It’s monitoring made effortless!

17. Utilize cPFence Bulk Tools to Save Time

Managing multiple WordPress sites doesn’t have to be a headache. cPFence bulk tools are designed to simplify and speed up server-wide management tasks, letting you focus on what really matters.

Here’s a comprehensive list of what you can do with cPFence bulk tools:

LiteSpeed Cache Plugin Management:

cpfence --bulk-install-ls-plugin # Install the LiteSpeed plugin on all WordPress sites server-wide.
cpfence --bulk-configure-ls-plugin # Configure the LiteSpeed plugin with advanced presets and Redis enabled server-wide.
cpfence --bulk-enable-ls-redis # Enable Redis caching within the LiteSpeed plugin server-wide.
cpfence --bulk-enable-ls-heartbeat # Bulk enable and configure heartbeat options (disabled on frontend, minimal on backend).
cpfence --bulk-reset-ls-plugin # Reset all options in the LiteSpeed Cache plugin to factory defaults server-wide.
cpfence --bulk-clear-litespeed-cache # Clear the LiteSpeed cache on all WordPress sites server-wide.

WordPress Plugin Management:

cpfence --bulk-install-wp-plugin # Install any WordPress plugin using name, ZIP file path, or URL to ZIP server-wide.
cpfence --bulk-uninstall-wp-plugin # Deactivate and uninstall any WordPress plugin server-wide using the plugin slug.

WordPress Core, Updates, and Automation:

cpfence --bulk-update-wordpress # Perform a bulk update of WordPress core, plugins, themes, and translations on all listed sites.
cpfence --enable-wp-auto-updates # Enable automatic updates for WordPress core, plugins, and themes on all listed sites.
cpfence --disable-wp-auto-updates # Disable automatic updates for WordPress core, plugins, and themes on all listed sites.

WordPress Cron Events and Core Management:

cpfence --bulk-run-due-wp-cron # Run all due WordPress cron events server-wide immediately.
cpfence --bulk-force-wp-core-files # Force restore WordPress core files to default server-wide (for experienced system admins only).
cpfence --bulk-create-wp-user # Create a WordPress user server-wide (username, email, password, and role are prompted).

Site Listings and Backups:

cpfence --generate-wp-sites-list # Generate a list of WordPress sites and their owners on the server.
cpfence --bulk-backup-wp-sites # Bulk create backups of all WordPress sites (files and databases) and store them in /cpf_wp_backups/.
With these tools, you can manage WordPress sites server-wide effortlessly, from installing and updating plugins to enabling auto-updates and generating site lists. Whether you’re optimizing performance, automating updates, or securing your WordPress sites, cPFence bulk tools are a must-have for any server admin looking to save time and simplify their workflow.

18. Backup Your Backups

Ever wondered what would happen if your backup server decides to take a vacation (or worse, fails entirely)? It’s a nightmare scenario, but one you can avoid with a simple solution: backup your backups.

This tip is especially crucial for hosting companies that handle mission-critical websites. By creating secondary backups, you ensure redundancy and protect your data from unexpected disasters. While VPS owners running non-critical sites might skip this, hosting companies can’t afford to take the risk.

Learn how to set up secondary backups effectively:
How to Backup Your Enhance Backups

Taking the extra step to safeguard your backups will give you peace of mind and keep your operations running smoothly, even in the face of the unexpected.

19. Use Knowledge Bases Before Tickets!

If you’re running a smaller setup with fewer than 50 sites, you’re likely paying just about $5 a month for your Enhance license—and the same for your cPFence license. That’s an incredible value for the features and support you get. However, to keep this model sustainable, it’s important to use resources wisely.

Why Knowledge Bases Matter:

Enhance and cPFence both offer extensive, easy-to-search knowledge bases filled with solutions to common issues:

• Enhance Knowledge Base
• cPFence Knowledge Base

Before submitting a ticket, take a moment to search these resources. Many inquiries can be resolved quickly on your own, saving both your time and the support team’s.

Use Common Sense:

While both Enhance and cPFence teams strive to deliver top-notch support, they’re designed to handle critical issues—not daily troubleshooting for every minor question. A $5/month license doesn’t cover unlimited ticketing, so let’s keep things fair and reasonable! By using the knowledge bases effectively, you help ensure support remains available when you really need it.

20. Okay, We Lied—This Isn’t a Tip!

Actually, it’s a polite cPFence-related note that we’d like everyone to read carefully. We don’t currently offer server management services. Our team is fully dedicated to a select group of enterprise clients, and unfortunately, we’re unable to take on additional clients for server administration at this time.

While we deeply appreciate your interest and willingness to do business with us, we kindly ask that you refrain from submitting tickets requesting server management services. It’s simply not something we can provide right now, and we’d like to focus our efforts on delivering the best experience for our existing clients and working harder to continually improving cPFence to ensure it becomes the leading solution in the market. Thank you for understanding!

Follow these tips to turn your Enhance server into a high-performing, reliable powerhouse. Have additional tips or tricks? We’d love to hear from you—let’s keep improving together!