BeastNgine is an Engintron inspired implementation of Varnish, Nginx, Brotli, php-fpm, certbot and modsecurity for FreeBSD.

This only installs a very customized, secure and optimized web server stack, especially oriented to WordPress installations

Keep in mind that this will not install DNS servers or Mail servers

For DNS you can simply use Cloudflare, or your VPS provider DNS, even glue records on your domain registrar.

BeastNgine default installation contains a web server environment by default with the following technologies:

1 – Varnish
2 – MariaDB
3 – Nginx-Devel (pre-compiled with Brotli, HTTP2 and Modsecurity modules)
4 – Nginx cache
5 – Security headers

6 – Certbot-Nginx
7 – Expiration headers for common files
8 – Brotli compression by default
10 – PHP 7.4 with all necessary modules
11 – OWASP WAF Rules for Modsecurity
12 – Custom security rules for Nginx (badbots, bad referers…)
13 – Preconfigured PF FreeBSD firewall
14 – Custom system hardnening and performance tuning

15 – A collection of custom scripts for system administration


Please, install it ONLY in clean FreeBSD installations to avoid some compatibility troubles

Changing FreeBSD pkg repo from «quarterly» to «latest» is required

You can do it editing the file /usr/local/etc/pkg.conf

Don’t forget to install htop, git, nano, curl and wget: pkg install curl wget htop nano git


1 – Clone the repo: git clone

2 – Enter into the directory: cd BeastNgine/

3 – Launch and FOLLOW CAREFULLY the instructions: sh

4 – Once the installation is complete, restart your server


0 – Launch

1 – OPTIONAL: Change your SSH access port and use the same for /etc/pf.conf firewall

2 – Add your hostname to /etc/hosts

3 – Launch script to create a VHOST for a domain, this will create his own directory on /usr/local/www/public_html and his own pre-configured VHOST on /usr/local/etc/nginx/conf.d

4 – If the domain have DNS set up, launch script to install an SSL certificate

5 – Start working on your website

6 – If you need to create databases, you can access phpmyadmin using

7 – If you’re under attack, just launch script to block ALL TRAFFIC, launch to deactivate

8 – You can block IPs too with the script

9 – You can update your system launching script

10 – You can clean your pkg and ports tmp files using script

11 – You can repair permissions on the public directory (/usr/local/www/public_html) with the script

12 – You can optimize images of your website with the script, with: bash

13 – You can install wordpress inside a directory on public_html with the script

14 – You can make backups of your WordPress (with sql database included), with the script