I am using cpanel 5 and want to lock things down with ipchains/iptables and want to know what ports I MUST leave open.

Obviosly..

HTTP
HTTPS
SMTP
POP3
DNS
CPANEL WEB INTERFACE
FTP
SSH

Is there anything else I have to leave open for it to function properly?

Does anyone already have an ipchains config file (for use with cpanel) they could attatch?

Thanks.

you don't need to use ipchains/tables for these purposes. simply stop the services you don't need and the ports will be closed. otherwise, if you lock down all ports (and leave only those open) people won't be able to connect to the server (server won't open socket, because you will lock all ports down)

here is a list of some of the ports that cpanel uses:
20 ---> FTP ---> TCP
20 ---> FTP ---> UDP
21 ---> FTP ---> TCP
21 ---> FTP ---> UDP
22 ---> SSH ---> TCP
25 ---> SMTP ---> TCP
53 ---> DNS ---> TCP & UDP
80 ---> HTTP ---> TCP
110 ---> POP3 ---> TCP
143 ---> IMAP ---> TCP
443 ---> HTTPs ---> TCP
465 ---> sSMTP ---> TCP
993 ---> sIMAP ---> TCP
995 ---> sPOP3 ---> TCP
2082 ---> Cpanel ---> TCP
2083 ---> secure Cpanel
2086 ---> WHM ---> TCP
2087 ---> secure WHM
2095 ---> WebMail ---> TCP
2096 ---> secure WebMail
3306 ---> MySQL ---> TCP
7786 ---> Ichange ---> TCP
6666 ---> Melange ---> TCP

I may have missed a couple, and don't know if they are all 'critical'