Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Allowing all connections on a port in CSF

Discussion in 'cPanel Developers' started by Jinovich, Mar 28, 2008.

  1. Jinovich

    Jinovich Member

    Joined:
    Mar 16, 2008
    Messages:
    16
    Likes Received:
    0
    Trophy Points:
    51
    Let me set the scenario, running shoutcast, opened a TCP port on the shoutcast port which now enables me to see the default shoutcast status page.

    Tried to connect and connection failed, looked at the csf report to see activity on port 8002 (my scast port) see my inbound TCP connection was blocked.

    Disabled csf and managed to connect fine.

    How would I enable the firewall to allow any connection on port 8002 from any IP?

    Regards,

    Jin

    Note: I realise that this forum is not a support forum but I prefer asking here as there are always people willing to help. Appreciate all constructive comments
     
    #1 Jinovich, Mar 28, 2008
  2. chirpy

    chirpy Well-Known Member

    Joined:
    Jun 15, 2002
    Messages:
    13,460
    Likes Received:
    22
    Trophy Points:
    463
    Location:
    Go on, have a guess
    Add port 8002 to TCP_IN in csf.conf and then restart csf:

    csf -r

    That should be all you need.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #2 chirpy, Mar 28, 2008
  3. Jinovich

    Jinovich Member

    Joined:
    Mar 16, 2008
    Messages:
    16
    Likes Received:
    0
    Trophy Points:
    51
    Nope, it seems to be blocking IP address's connecting to that port.
     
    #3 Jinovich, Mar 28, 2008
  4. chirpy

    chirpy Well-Known Member

    Joined:
    Jun 15, 2002
    Messages:
    13,460
    Likes Received:
    22
    Trophy Points:
    463
    Location:
    Go on, have a guess
    What's the full iptables (kernel) block line from /var/log/messages?
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #4 chirpy, Mar 28, 2008
  5. Jinovich

    Jinovich Member

    Joined:
    Mar 16, 2008
    Messages:
    16
    Likes Received:
    0
    Trophy Points:
    51
    this is the IP allow rule

    50 0 0 ACCEPT tcp -- !lo * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:8002


    and this is the report,

    1 Mar 28 10:41:00 - - Firewall: *TCP_IN Blocked* tcp 86.120.72.89 50559 208.53.138.141 8002 SYN
    3 Mar 28 10:40:39 Mar 28 10:40:48 00:00:00:09 Firewall: *TCP_IN Blocked* tcp 86.120.72.89 50557 208.53.138.141 8002 SYN


    Edit: Got it working ran, netstat -tulnap and it showed sc_trans on 8002 and 8003, added 8002 and 8003 to tcp ports and bingo.
     
    #5 Jinovich, Mar 28, 2008
    Last edited: Mar 28, 2008
  6. Anora

    Anora Registered

    Joined:
    Feb 15, 2011
    Messages:
    1
    Likes Received:
    0
    Trophy Points:
    51
    I'm habing a simelor problem we are using port 8000 and 8001 and we got the ports listed into csf and its still bloking we have tride several things and we can get to unblock so we turned csf off.
     
    #6 Anora, Feb 15, 2011
  7. cPanelTristan

    cPanelTristan Quality Assurance Analyst Staff Member

    Joined:
    Oct 2, 2010
    Messages:
    7,608
    Likes Received:
    33
    Trophy Points:
    238
    Location:
    somewhere over the rainbow
    cPanel Access Level:
    Root Administrator
    Did you list the ports in both TCP and UDP for incoming and outgoing connections in CSF? There are 4 different sections in CSF (TCP IN, TCP OUT, UDP IN and UDP OUT) where you can list the port.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #7 cPanelTristan, Feb 15, 2011
(You must log in or sign up to post here.)
Loading...
Similar Threads - Allowing connections port
  1. ashpak

    SOLVED EA4 libnghttp2 not allowing any profile modification

    ashpak, Jan 29, 2018, in forum: EasyApache
    Replies:
    5
    Views:
    498
    cPJacob
    Jan 30, 2018
  2. mahou66

    cPanel Not Allowing Wordpress Updates

    mahou66, Jun 13, 2017, in forum: General Discussion
    Replies:
    1
    Views:
    1,512
    cPanelMichael
    Jun 13, 2017
  3. jazee

    550-Verification failed - allowing bogus sender domains

    jazee, Mar 5, 2017, in forum: E-mail Discussion
    Replies:
    1
    Views:
    856
    cPanelMichael
    Mar 6, 2017
  4. Kamil Brand Nova

    Blacklisting IP's in Host Access Control blocks FTP connections?

    Kamil Brand Nova, Dec 14, 2018, in forum: Security
    Replies:
    1
    Views:
    258
    cPanelMichael
    Dec 17, 2018
  5. Maning

    limit user connections on mysql

    Maning, Oct 11, 2018, in forum: Database Discussion
    Replies:
    1
    Views:
    161
    cPanelLauren
    Oct 12, 2018

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice