Results 1 to 16 of 16
  1. #1
    Join Date
    Nov 2001
    Posts
    137

    Firewall suggestion.

    Which one do you use?

  2. #2
    Join Date
    Nov 2001
    Posts
    137
    Blah I installed APF

    I figure it is the most common so it is the best.

    What is the suggested TCP and UDP port settings?

  3. #3
    Join Date
    Mar 2004
    Posts
    158
    Use the search And try this http://www.webhostingtalk.com/showth...hreadid=227090 for starters... You may also want to install BFD alongside APF.

  4. #4
    Join Date
    Apr 2003
    Location
    NC
    Posts
    3,093
    Just make sure you get your control panel ports, they all use different ports.

  5. #5
    Join Date
    Nov 2001
    Posts
    137
    IG_TCP_CPORTS="20,21,22,25,53,80,110,143,443,465,993,995,2082,2083,2086,2087,2095,2096,3306,7786,10000,35000_35999"
    IG_UDP_CPORTS="20,21,53,873,1040"

    Suggestions on those ports?

    I'm installing BFD now.

  6. #6
    Originally posted by Stium
    IG_TCP_CPORTS="20,21,22,25,53,80,110,143,443,465,993,995,2082,2083,2086,2087,2095,2096,3306,7786,10000,35000_35999"
    IG_UDP_CPORTS="20,21,53,873,1040"

    Suggestions on those ports?

    I'm installing BFD now.
    Studying your port list, I could tell that you're going to use cPanel and/or Webmin. So, which control panel are you going to install on your machine, if any at all.

  7. #7
    Join Date
    Nov 2001
    Posts
    137
    cpanel

    What was the webmin port?

  8. #8
    Originally posted by Stium
    cpanel

    What was the webmin port?
    Webmin binds itself to 10000

  9. #9
    Join Date
    Nov 2001
    Posts
    137
    blah alright,

    I knew 10000 was for something but I couldn't remember what so I added it. I havn't used webmin for a while now.

    Thanks mate

  10. #10
    BTW, speaking of ports, what are you using 7786 and 35000_35999 for?

  11. #11
    Join Date
    Nov 2001
    Posts
    137
    No clue, they were suggested to me by another user.

    I believe 7786 is plesk but I'm not sure...

    My server is at the planet.

    They told me I've got to allow all TCP UDP on all ports for their monitoring.. You ever heard of this?

  12. #12
    Originally posted by Stium
    No clue, they were suggested to me by another user.

    I believe 7786 is plesk but I'm not sure...

    My server is at the planet.

    They told me I've got to allow all TCP UDP on all ports for their monitoring.. You ever heard of this?
    Hmmmm, you don't need to open all your ports for them to monitor your server... try this, open all the necessary ports for your server (including cPanel ports), and then ask The Planet what is the monitoring server's IP, and add that IP to your allow_hosts file (I'm assuming you're using APF).

  13. #13
    Join Date
    Dec 2001
    Location
    Above The Clouds
    Posts
    7,223
    Plesk runs on 8443. And we write our own firewalls.
    Laurence Flynn @ HostNEXUS.com
    Managed WordPress Hosting Solutions
    Focused on speed. Obsessed with security.

  14. #14
    iptables is too complicated. I am using APF tool, it is really good.

    current version:

    http://www.rfxnetworks.com/downloads/apf-current.tar.gz

    you can also use debug mod to test it until you are satisfied.

  15. #15
    Join Date
    Aug 2004
    Location
    Karachi, Pakistan
    Posts
    748
    Just out of curiosity, why not invest/lease a hardware firewall. Much easier to maintain, robust, tons of functions, etc.

  16. #16
    Join Date
    Sep 2004
    Location
    Flint, Michigan
    Posts
    5,766
    Just out of curiosity, why not invest/lease a hardware firewall. Much easier to maintain, robust, tons of functions, etc.
    They cost more than APF

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •