Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Help with unblocking ports

Discussion in 'General Discussion' started by deflime, Aug 5, 2011.

  1. deflime

    deflime Registered

    Joined:
    Aug 5, 2011
    Messages:
    4
    Likes Received:
    0
    Trophy Points:
    51
    So I have a hosted server with about 200 accounts running cPanel off of WHM.

    I was looking to unblock port 30000 on the server.

    I came across literature about installing a firewall plugin like CSF or APF.

    I have since gotten in touch with the company that manages the server to unblock the port and they have since said that they have (twice). But if I run a test through ssh, telnet random-domain-on-my-server.com 30000, I still get a refused connection. Also, the software that requires the open port, still doesn't work (obviously).

    Any thoughts?

    Even though they opened port 30000 do I still need to install a firewall plugin and configure WHM to open the port? Or should that already be enough and they haven't done it properly?

    Thanks for any help!
     
    #1 deflime, Aug 5, 2011
  2. cPanelTristan

    cPanelTristan Quality Assurance Analyst
    Staff Member

    Joined:
    Oct 2, 2010
    Messages:
    7,608
    Likes Received:
    32
    Trophy Points:
    238
    Location:
    somewhere over the rainbow
    cPanel Access Level:
    Root Administrator
    You can check if the port has been opened in the firewall:

    Code:
    /sbin/iptables -n -L | grep 30000
    Also, does the port need opened for incoming or outgoing port 30000? That does matter for the firewall rule because those are different chains in the firewall and they might have added the port to the wrong chain.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #2 cPanelTristan, Aug 5, 2011
  3. deflime

    deflime Registered

    Joined:
    Aug 5, 2011
    Messages:
    4
    Likes Received:
    0
    Trophy Points:
    51
    Not sure on incoming/outgoing, I would assume both, information is sent to 3rd party website, and then results are returned.

    --

    Here are the results:

    Code:
    /root$ /sbin/iptables -n -L | grep 30000
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0           tcp dpt:30000 
ACCEPT     udp  --  0.0.0.0/0            0.0.0.0/0           udp dpt:30000
    So looks like it's open, though the blank ips are confusing me a little, not completely sure what to take from this.

    Code:
    telnet domain.com 30000
    Is still showing connection refused.

    So if it is open, I am guessing that what I need to do is, in fact, install a firewall plugin for the last step, right?
     
    #3 deflime, Aug 5, 2011
  4. cPanelTristan

    cPanelTristan Quality Assurance Analyst
    Staff Member

    Joined:
    Oct 2, 2010
    Messages:
    7,608
    Likes Received:
    32
    Trophy Points:
    238
    Location:
    somewhere over the rainbow
    cPanel Access Level:
    Root Administrator
    Can you check the full return for the firewall now:

    Code:
    /sbin/iptables -n -L
    They probably only added it for outgoing tcp and udp and not for incoming.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #4 cPanelTristan, Aug 5, 2011
  5. deflime

    deflime Registered

    Joined:
    Aug 5, 2011
    Messages:
    4
    Likes Received:
    0
    Trophy Points:
    51
    Very long results..

    But it only showed up in Chain INPUT and not in Chain OUTPUT.. is that what you mean or should I look for something else?
     
    #5 deflime, Aug 5, 2011
  6. cPanelTristan

    cPanelTristan Quality Assurance Analyst
    Staff Member

    Joined:
    Oct 2, 2010
    Messages:
    7,608
    Likes Received:
    32
    Trophy Points:
    238
    Location:
    somewhere over the rainbow
    cPanel Access Level:
    Root Administrator
    Ask them to put it into the OUTPUT chain for tcp and udp then, or you can try to add it yourself:

    Code:
    /sbin/iptables -I OUTPUT -p tcp -m tcp --dport 30000 -j ACCEPT
/sbin/iptables -I OUTPUT -p udp -m udp --dport 30000 -j ACCEPT
    If this does work at that point for the command you need to run, then please save the rules:

    Code:
    service iptables save
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #6 cPanelTristan, Aug 5, 2011
  7. deflime

    deflime Registered

    Joined:
    Aug 5, 2011
    Messages:
    4
    Likes Received:
    0
    Trophy Points:
    51
    That worked. Now in OUPUT. Thanks a lot for that.

    The application is still serving errors, although it seems to hang a bit before the error, perhaps suggesting it is in touch with the 3rd party server, before it would just provide an instant error. I've sent a quick email to them to see if there's anything wrong on their end.

    At this point it sounds like the server should be ready for the connection, and I take it, it doesn't matter that the connection is refused when I run the telnet.
     
    #7 deflime, Aug 5, 2011
(You must log in or sign up to post here.)
Loading...
Similar Threads - Help unblocking ports
  1. Spasso

    PHP Startup: Unable to load dynamic library error [help]

    Spasso, Aug 15, 2018 at 5:22 PM, in forum: General Discussion
    Replies:
    1
    Views:
    32
    cPanelMichael
    Aug 16, 2018 at 11:34 AM
  2. KFoe

    SOLVED Cpanel University is there a chat or group I can join for help?

    KFoe, Jul 8, 2018, in forum: General Discussion
    Replies:
    3
    Views:
    111
    cPanelLauren
    Jul 9, 2018
  3. xanadu

    Problem with Auto SSL that I need help in solving please

    xanadu, Jul 6, 2018, in forum: Security
    Replies:
    1
    Views:
    422
    cPanelLauren
    Jul 9, 2018
  4. phil99

    SOLVED Help with CSF custom regex

    phil99, Jun 10, 2018, in forum: Security
    Replies:
    10
    Views:
    200
    cPanelLauren
    Jun 11, 2018
  5. Spork Schivago

    Need help Setting up more than one DMARC record.

    Spork Schivago, Apr 29, 2018, in forum: Bind/DNS/Nameserver
    Replies:
    8
    Views:
    228
    Spork Schivago
    May 4, 2018

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice