The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Cpanel Ports --> firewall

Discussion in 'General Discussion' started by Nadeem, Aug 16, 2002.

  1. Nadeem

    Nadeem Member

    Joined:
    May 1, 2002
    Messages:
    17
    Likes Received:
    0
    Trophy Points:
    1
    Cpanel Ports --> firewall

    hi, i'm going to install a firewall (PMFirewall) on my server (redhat 7.2)
    and i need to know what Ports do i have to leave Open?

    till now i will just open this ports:
    [quote:08111cffa2]
    21 ---& FTP ---& TCP
    22 ---& SSH ---& TCP
    25 ---& SMTP ---& TCP
    53 ---& DNS ---& TCP & UDP
    80 ---& HTTP ---& TCP
    110 ---& POP3 ---& TCP
    143 ---& IMAP ---& TCP
    443 ---& HTTPs ---& TCP
    993 ---& sIMAP ---& TCP
    995 ---& sPOP3 ---& TCP
    2082 ---& Cpanel ---& TCP
    2086 ---& WHM ---& TCP
    2095 ---& WebMail ---& TCP
    3306 ---& MySQL ---& TCP
    7786 ---& Ichange ---& TCP
    6666 ---& Melange ---& TCP
    [/quote:08111cffa2]

    A - is there any ports i did'nt add? and what about Cpanel update, dose it use particular port?


    =================================


    what about the ports (1,2083,2084,2087,111,2096,456) that i see open on my `netstat -an` ex:

    [quote:08111cffa2]
    tcp 0 0 0.0.0.0:1 0.0.0.0:* LISTEN
    tcp 0 0 0.0.0.0:2083 0.0.0.0:* LISTEN
    tcp 0 0 0.0.0.0:2084 0.0.0.0:* LISTEN
    tcp 0 0 0.0.0.0:2087 0.0.0.0:* LISTEN
    tcp 0 0 0.0.0.0:111 0.0.0.0:* LISTEN
    tcp 0 0 0.0.0.0:2096 0.0.0.0:* LISTEN
    tcp 0 0 0.0.0.0:465 0.0.0.0:* LISTEN
    [/quote:08111cffa2]

    B - do i have to open any ot them on the firewall?



    =================================

    Thank you
    Nadeem
     
  2. haze

    haze Well-Known Member

    Joined:
    Dec 21, 2001
    Messages:
    1,550
    Likes Received:
    3
    Trophy Points:
    38
    3 that you missed:

    2083 ---& secure Cpanel
    2087 ---& secure WHM
    2096 ---& secure WebMail

    There could be more.. but I noticed these.
     
  3. awsol

    awsol cPanel Test Bitch

    Joined:
    Feb 8, 2002
    Messages:
    591
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Boston MA
    Hey Nick can you throw us a full list of ports we should leave open.
     
  4. feanor

    feanor Well-Known Member

    Joined:
    Aug 13, 2001
    Messages:
    836
    Likes Received:
    0
    Trophy Points:
    16
    It's 2080 through 2099

    when we've ranted back and forth at each other, bdraco has spawned that range as &leave those open and you'll be fine& -ish

    Good luck.

    ;)
     
  5. jumpdomain

    jumpdomain Well-Known Member

    Joined:
    Aug 12, 2001
    Messages:
    109
    Likes Received:
    0
    Trophy Points:
    16
    If you are also firewalling off outbound traffic, which I would recommend, you need to make sure and leave Rsync open otherwise, CPanel will not update correctly. That is along with the other usual ports...
     
  6. jsteel

    jsteel Well-Known Member

    Joined:
    Jul 4, 2002
    Messages:
    646
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Atlanta, GA
    Why is port 3000 running 'ppp'? I also notice 3001 open on my box running 'nessusd'.

    Thanks,
    Jaz
     
  7. feanor

    feanor Well-Known Member

    Joined:
    Aug 13, 2001
    Messages:
    836
    Likes Received:
    0
    Trophy Points:
    16
    Those aren't normal for a cpanel box, nor are they cpanel instilled....

    I just did some checking around, and 3000/3001 are definitely not normal. 3306 (mysql) is the only common tcp port in the 3,000 range for a cpanel box.
    Default configuration wise, that is.
     
Loading...

Share This Page