The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Firewall Question...

Discussion in 'General Discussion' started by mspottedhorse, Mar 30, 2003.

  1. mspottedhorse

    mspottedhorse Member

    Joined:
    Nov 16, 2002
    Messages:
    23
    Likes Received:
    0
    Trophy Points:
    1
    How necessary is it to run an additional firewall on Cpanel servers. Is IP Chains/Tables enough? We keep all software up to day and make any patches as warranted. Should we really be running additional firewalls, and if so what are folks recommendations.
     
  2. MikeMc

    MikeMc Well-Known Member

    Joined:
    May 8, 2002
    Messages:
    161
    Likes Received:
    0
    Trophy Points:
    16
    add portsentry (although I think it's default on cpanel servers). Some other firewall solutions have shown some problems with cpanel servers. From the other hand there are professional solutions, but these cost much.
     
  3. chrisben

    chrisben Member

    Joined:
    Feb 6, 2003
    Messages:
    23
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    Sydney, Australia
    ipchains and iptable they work fine, only thing u need to know the ports used by cpanel.


    if you can provide me detialed list of ports used by cpanel, we will do a custom script

    Thanks
    Chris
     
  4. jamesbond

    jamesbond Well-Known Member

    Joined:
    Oct 9, 2002
    Messages:
    738
    Likes Received:
    1
    Trophy Points:
    18
    Here you go :

    21 ---& FTP ---& TCP
    22 ---& SSH ---& TCP
    25 ---& SMTP ---& TCP
    53 ---& DNS ---& TCP & UDP
    80 ---& HTTP ---& TCP
    110 ---& POP3 ---& TCP
    143 ---& IMAP ---& TCP
    443 ---& HTTPs ---& TCP
    465 ---& sSMTP ---& TCP
    993 ---& sIMAP ---& TCP
    995 ---& sPOP3 ---& TCP
    2082 ---& Cpanel ---& TCP
    2083 ---& secure Cpanel
    2086 ---& WHM ---& TCP
    2087 ---& secure WHM
    2095 ---& WebMail ---& TCP
    2096 ---& secure WebMail
    3306 ---& MySQL ---& TCP
    6666 ---& Melange ---& TCP
    7786 ---& Ichange ---& TCP
     
  5. remal

    remal Member

    Joined:
    Mar 19, 2003
    Messages:
    17
    Likes Received:
    0
    Trophy Points:
    1
    i think there is missing port james..
    the port that Cpanel use to rsyn and upgrade from cpanel.net servers
     
  6. Networkologist

    Networkologist Well-Known Member

    Joined:
    Feb 5, 2003
    Messages:
    209
    Likes Received:
    0
    Trophy Points:
    16
    I've been asking for a complete list myself. It's kind of frustrating. Hard to believe that their are few responses from folks who've installed a SW firewall...
     
  7. jamesbond

    jamesbond Well-Known Member

    Joined:
    Oct 9, 2002
    Messages:
    738
    Likes Received:
    1
    Trophy Points:
    18
    I asked the same a while ago when I tried installing KISS firewall (mentioned elsewhere)

    Everything seemed to work fine, except for cpanel updates, the rsync problem I guess.
    Back then I wasn't sure it was a port problem, I finally gave up on running KISS.

    So if anyone knows what to modify in KISS to enable cpanel updates, don't hesitate to tell us :)
     
  8. Marty

    Marty Well-Known Member

    Joined:
    Oct 10, 2001
    Messages:
    630
    Likes Received:
    1
    Trophy Points:
    18
  9. Networkologist

    Networkologist Well-Known Member

    Joined:
    Feb 5, 2003
    Messages:
    209
    Likes Received:
    0
    Trophy Points:
    16
Loading...

Share This Page