For our Blog Visitor only Get Additional 3 Month Free + 10% OFF on TriAnnual Plan YSBLOG10
Grab the Deal
youstable-blog-sidebar

How to Optimize cPanel on Linux Server – Complete Guide

Prahlad Prajapati 7 min read

To optimize cPanel on a Linux server, audit your stack, enable PHP-FPM and OPcache, tune Apache or switch to LiteSpeed, optimize MySQL/MariaDB, deploy caching (Redis/Memcached), enable HTTP/2 and compression, refine WHM Tweak Settings, and harden security without adding latency. Measure with real metrics and iterate using WHM, CLI, and monitoring tools.

Optimizing cPanel on a Linux server is about balancing speed, stability, and security. With the right WHM settings, web stack choices, and database/caching tweaks, you can dramatically improve TTFB, concurrent user capacity, and overall reliability without overspending on hardware. Below is a step-by-step, beginner-friendly blueprint based on real hosting experience.

Why cPanel Optimization Matters

Why cPanel Optimization Matters

cPanel/WHM can serve hundreds of websites per server when tuned correctly. Performance gains reduce CPU spikes, memory thrashing, and I/O wait, while security hardening keeps abuse under control. The result: faster sites, higher conversions, better Core Web Vitals, and lower infrastructure costs.

Prerequisites and Baseline Audit

Check server resources and versions

  • OS: AlmaLinux, Rocky Linux, or CloudLinux (cPanel-supported and stable)
  • CPU/RAM: At least 4 vCPU/8 GB RAM for modest shared workloads
  • Storage: SSD/NVMe with good IOPS; ensure free space > 20%
  • cPanel/WHM, EasyApache 4, and MariaDB/MySQL at supported versions

Measure current performance

  • Load and I/O: top, htop, iostat, vmstat
  • Web timing: curl -w, browser DevTools, GTmetrix, WebPageTest
  • DB health: mysqltuner, slow query log, performance_schema
  • WHM: Server Status > Service Status, Apache Status, Resource Usage
# Install common tools
dnf install -y htop iotop sysstat

# Quick TTFB check
curl -o /dev/null -s -w "TTFB: %{time_starttransfer}\n" https://yourdomain.com

Optimize the Web Stack (Apache, PHP, or LiteSpeed)

Use EasyApache 4 with the right profile

  • Enable modules: mod_http2, mod_deflate or mod_brotli, mod_expires, mod_security2 (with a tuned ruleset)
  • Disable unneeded MPMs/modules to reduce memory footprint
  • Keep OpenSSL and cURL updated for TLS performance and security

Switch to PHP-FPM, tune handlers, and enable OPcache

  • WHM > MultiPHP Manager: Enable PHP-FPM per domain or globally
  • WHM > MultiPHP INI Editor: Enable and size OPcache (e.g., 128–256 MB)
  • Prefer PHP 8.1+ for better JIT/engine optimizations when compatible
; /opt/cpanel/ea-php81/root/etc/php.d/10-opcache.ini
opcache.enable=1
opcache.memory_consumption=256
opcache.max_accelerated_files=100000
opcache.validate_timestamps=1
opcache.revalidate_freq=60

Consider LiteSpeed (or OpenLiteSpeed) for higher concurrency

LiteSpeed Web Server integrates with cPanel, supports LSCache (edge-level caching), HTTP/3/QUIC, and can cut CPU usage for PHP-heavy WordPress/Magento sites. If you run CloudLinux, LSAPI is an alternative to PHP-FPM with excellent performance isolation.

  • Pros: Faster TTFB, built-in page/object cache, lower CPU at scale
  • Cons: License cost (worth it on busy shared servers)

Enable HTTP/2 and compression

  • HTTP/2 drives multiplexing and header compression for faster delivery
  • Enable gzip or Brotli; Brotli is stronger but costlier on CPU
# Apache Brotli example (if module available)
AddOutputFilterByType BROTLI_COMPRESS text/html text/css application/javascript application/json
# Fallback to gzip if needed

Database Tuning (MySQL/MariaDB)

Default DB configs are conservative. A few targeted changes often reduce query time and disk I/O dramatically, especially on WordPress, WooCommerce, and Laravel apps.

Key my.cnf parameters

  • InnoDB: buffer_pool_size (50–70% RAM on DB-heavy servers), log_file_size, flush_log_at_trx_commit=2
  • Connections: max_connections sized to workload (avoid setting it excessively high)
  • Query cache: disabled on modern MariaDB/MySQL for performance reasons
# /etc/my.cnf (example for 16 GB RAM server)
[mysqld]
innodb_buffer_pool_size=8G
innodb_log_file_size=1G
innodb_flush_log_at_trx_commit=2
innodb_flush_method=O_DIRECT
max_connections=300
tmp_table_size=256M
max_heap_table_size=256M
performance_schema=ON
slow_query_log=1
slow_query_log_file=/var/log/mysql-slow.log
long_query_time=1

Identify slow queries

  • Enable slow query log and run mysqltuner regularly
  • Use pt-query-digest (Percona Toolkit) for actionable analysis
# Analyze slow query log
dnf install -y percona-toolkit
pt-query-digest /var/log/mysql-slow.log | less

Caching and Acceleration

Object caching with Redis or Memcached

  • Redis is widely supported by WordPress, WooCommerce, Magento
  • Install the service and PHP extension via EasyApache 4 or pecl
  • Secure with a local socket or firewall; avoid exposing to the internet
# Redis install (Alma/Rocky)
dnf install -y redis
systemctl enable --now redis

# PHP extension (example for PHP 8.1 via EA4)
dnf install -y ea-php81-php-redis

Page caching

  • LiteSpeed: Use LSCache plugin for WordPress, Magento, OpenCart
  • Apache: Combine with a CDN (e.g., Cloudflare) + full-page caching plugin
  • Static assets: Set far-future cache headers via mod_expires
# .htaccess example for static caching (Apache)
ExpiresActive On
ExpiresByType image/webp "access plus 6 months"
ExpiresByType text/css "access plus 1 month"
ExpiresByType application/javascript "access plus 1 month"

Security Without Slowing Down

ModSecurity and WAF rules

  • Use a curated ruleset (OWASP CRS, Comodo, or vendor) and disable chatty rules that create false positives
  • Exclude admin-ajax, cron, and known safe endpoints to reduce overhead

Malware protection and hardening

  • Imunify360 or cPGuard: automated malware cleanup, herd immunity
  • CSF/LFD firewall: limit abusive connections, rate-limit SMTP/IMAP
  • SSH: key-based auth, non-default port, fail2ban if needed
# CSF quick hardening
dnf install -y csf
csf -e
# Limit common ports and whitelist your IP

Mail, DNS, and Service Optimization

Exim and Dovecot tuning

  • Use SMTP rate limits per account to prevent abuse
  • Enable spamd/SpamAssassin with sane thresholds; avoid overaggressive filtering
  • Leverage MailChannels or similar for outbound reputation if shared hosting

DNS and TTLs

  • Shorten TTLs (300–900s) during migrations; otherwise 3600s is fine
  • Use DNS clustering or a managed DNS provider for global resilience

System-Level Tuning

Kernel networking and file limits

  • Increase file descriptors and network backlog for high concurrency
  • Enable TCP fast open and modern congestion control (BBR if supported)
# /etc/sysctl.d/99-tuning.conf
fs.file-max=1000000
net.core.somaxconn=65535
net.ipv4.tcp_tw_reuse=1
net.ipv4.tcp_fin_timeout=15
net.ipv4.tcp_fastopen=3
net.core.netdev_max_backlog=250000

# Apply
sysctl --system

I/O and backups

  • Use deadline/none scheduler on SSD/NVMe; avoid heavy rsync during peak hours
  • WHM > Backup Configuration: incremental backups to remote storage (S3/SFTP), throttle I/O and CPU
  • Rotate logs and compress archives to keep disk usage healthy

WHM Settings Worth Reviewing

Tweak Settings highlights

  • Allow cPanel users to opt into PHP-FPM; set sensible max children per domain
  • Compress outbound HTTP content; enable IPv6 if available
  • Set resource limits (processes, memory) to prevent a few accounts from monopolizing the server
  • Enable AutoSSL (Let’s Encrypt) for HTTP/2/TLS benefits and security

Cron and scheduled tasks

  • Stagger heavy crons (backups, imports) to off-peak hours
  • Use wp-cron replacements with real system crons for busy WordPress sites
# Example: real cron for WordPress
*/5 * * * * php -d disable_functions= -d memory_limit=512M /home/user/public_html/wp-cron.php >/dev/null 2>&1

Monitoring and Alerting

You can’t optimize what you don’t measure. Combine WHM metrics with lightweight monitoring and log analysis.

  • WHM: Service Monitoring, Process Manager, Apache Status
  • Tools: Netdata, Prometheus + Node Exporter, Grafana dashboards
  • Alerts: Load, memory, disk, MySQL connections, 5xx rate, queue depth

Common Pitfalls to Avoid

  • Setting max_connections too high and exhausting RAM
  • Turning on every ModSecurity rule and causing false positives
  • Disabling swap entirely on low-memory VPS (a small swap file helps stability)
  • Running backups or malware scans during peak hours
  • Skipping updates for EA4/PHP/OS, leading to performance and security debt

When to Scale or Migrate

  • Persistent high load with optimized configs suggests scaling vertically (more CPU/RAM/NVMe) or horizontally (split DB, mail, or serve static via CDN)
  • Consider CloudLinux for LVE isolation on shared servers
  • Migrate busy apps to dedicated VPS/Cloud or a LiteSpeed-optimized stack

Quick Start: 10-Step Optimization Checklist

  • Update OS, cPanel/WHM, EA4, and PHP to supported versions
  • Enable PHP-FPM and OPcache; choose PHP 8.1+ where compatible
  • Turn on HTTP/2 and gzip/Brotli; set far-future caching
  • Consider LiteSpeed for high concurrency or stick to tuned Apache MPM Event
  • Tune MySQL/MariaDB (buffer pool, logs, connections); analyze slow queries
  • Install Redis and enable object caching in apps
  • Harden with ModSecurity, CSF, and malware protection without excessive rules
  • Offload backups remotely; throttle and schedule off-peak
  • Set resource limits and cron schedules in WHM
  • Implement monitoring and alerts; iterate monthly

FAQs on Optimizing cPanel on Linux Server

What are the best WHM settings for performance?

Enable PHP-FPM, OPcache, HTTP/2, compression, and reasonable process/memory limits. In Tweak Settings, allow users to choose PHP versions, activate AutoSSL, and disable unnecessary features. Keep EasyApache 4 lean with only required modules and ensure service monitoring is enabled for early warning.

Is LiteSpeed worth it over Apache on cPanel?

For busy PHP sites, yes. LiteSpeed typically lowers CPU, improves TTFB, and adds powerful LSCache. If budgets are tight, a tuned Apache MPM Event with PHP-FPM and a CDN also performs well, but LiteSpeed makes high concurrency easier, especially on shared hosting.

Should I use Redis or Memcached on cPanel?

Redis is generally preferred due to better data structures and broad plugin support (WordPress, WooCommerce, Magento). Install the Redis service and the PHP module via EasyApache 4, then enable object caching within your CMS plugin.

How do I tune MySQL/MariaDB safely?

Back up my.cnf, adjust a few parameters at a time (buffer pool, logs, connections), and restart during off-peak hours. Enable slow query logs and use mysqltuner and pt-query-digest to validate improvements. Avoid setting max_connections excessively high, which can crash the server.

Can CloudLinux improve cPanel performance?

Yes. CloudLinux adds LVE resource isolation, CageFS, and MySQL Governor, preventing noisy neighbors from overwhelming the server. It’s ideal for shared hosting where stability and fair resource allocation are critical.

Prahlad Prajapati

Prahlad is a web hosting specialist and SEO-focused organic growth expert from India. Active in the digital space since 2019, he helps people grow their websites through clean, sustainable strategies. Passionate about learning and adapting fast, he believes small details create big success. Discover his insights on web hosting and SEO to elevate your online presence.

Leave a Comment

Your email address will not be published. Required fields are marked *

Related Articles

Scroll to Top