Jul 10, 2008
Centos sets up a default set of ip table rules when installed. What ports should I open up in Iptables to allow cpanel to do its job?




Active Member
Sep 20, 2007
OK, so I've recently installed cpanel/whm on a fresh CentOS 5.2 server and I'm running into some issues with the IPTABLES.

I've only gone in and opened ports 2083, 2087, and 2089 in addition to the existing open ports. ports already open are: 22, 80, 443, 53 (udp/tcp), 69 (udp/tcp), 25, 110, 123 (udp), 20, 21, 3306 (udp/tcp), 5555, 8002, and 9001.

This is the what I've done:

1. nano /iptables/sysconfig/iptables
2. added in the needed ports for cpanel, whm and license port.
example: -A INPUT -p tcp -m tcp --dport 2083 -m state --state NEW -j ACCEPT
3. Ctrl + x to write-out and save
4. iptables-save
5. /etc/init.d/iptables save
6. service iptables restart

Upon restart, I can now access WHM and cPanel and works great and having fun learning...; however, now FTP access is knocked out along with HTTP, HTTPS to the domain. Cannot access the website at all. So I do the steps again at the top only removing the new ports I've put in and then steps 4, 5, and 6. Now I can't access WHM or cPanel (as expected) but now FTP and Http and Https to the website is perfect.

I know this isn't an IPTABLES forum per se but does anyone see a glaring error with what I'm doing (or not doing)?

Is there a way to use WHM or cPanel to add and remove ports in the IPTABLES?