LinkBack URL
About LinkBacksCentos sets up a default set of ip table rules when installed. What ports should I open up in Iptables to allow cpanel to do its job?
Thanks!
Chris
Iptables
Centos sets up a default set of ip table rules when installed. What ports should I open up in Iptables to allow cpanel to do its job?
Thanks!
Chris
Here's a page that will help: http://blog.cpanel.net/?p=55Originally Posted by offline
Thanks a million!!!
OK, so I've recently installed cpanel/whm on a fresh CentOS 5.2 server and I'm running into some issues with the IPTABLES.
I've only gone in and opened ports 2083, 2087, and 2089 in addition to the existing open ports. ports already open are: 22, 80, 443, 53 (udp/tcp), 69 (udp/tcp), 25, 110, 123 (udp), 20, 21, 3306 (udp/tcp), 5555, 8002, and 9001.
This is the what I've done:
1. nano /iptables/sysconfig/iptables
2. added in the needed ports for cpanel, whm and license port.
example: -A INPUT -p tcp -m tcp --dport 2083 -m state --state NEW -j ACCEPT
3. Ctrl + x to write-out and save
4. iptables-save
5. /etc/init.d/iptables save
6. service iptables restart
Upon restart, I can now access WHM and cPanel and works great and having fun learning...; however, now FTP access is knocked out along with HTTP, HTTPS to the domain. Cannot access the website at all. So I do the steps again at the top only removing the new ports I've put in and then steps 4, 5, and 6. Now I can't access WHM or cPanel (as expected) but now FTP and Http and Https to the website is perfect.
I know this isn't an IPTABLES forum per se but does anyone see a glaring error with what I'm doing (or not doing)?
Is there a way to use WHM or cPanel to add and remove ports in the IPTABLES?
Cheers,
Phil
Try this awesome script...
http://configserver.com/cp/csf.html
Absolutely Bloody Brilliant!!! Verdon, you have made my day. I set csf up, configured and rebooted the server 3 times and the firewall setting are still what I set them too which was a big problem without csf. Cheers mate -Phil
Also well worth installing are his free Mail Manage and Mail Queues tools. I also used his paid Mailscanner package and have no regrets. Good product. Good service. Good support.
Reply With Quote