Skip to main content

What should iptables config be?

Comments

7 comments

  • 24x7server
    Hello, There is no default iptables rules for cPanel server. You will have to enable following port in your server firewall so that you will not get any issues when iptables is started on your server 2082 cPanel TCP inbound 2083 cPanel SSL TCP inbound 2086 WHM TCP inbound 2087 WHM SSL TCP inbound 2089 cPanel license TCP outbound 2095 Webmail TCP inbound 2096 Webmail SSL TCP inbound
    0
  • marklewis
    [QUOTE]There is no default iptables rules for cPanel server.
    After a standard cPanel install, is iptables left switched off? If so how has it switched back on? Would an automatic software update have caused that?
    0
  • cPanelPeter cPanel Staff
    Hello, cPanel does NOTHING with a firewall. We do absolutely zero configuration for that. So what ever firewall you have installed at the time of the OS install is what you're using. Please type the following: iptables -L -n --line-numbers | grep :208
    That should list all rules with ports in the 208x range (2082-2087... etc...) And their current status: ACCEPT or DROP
    0
  • marklewis
    [QUOTE]what ever firewall you have installed at the time of the OS install is what you're using
    I originally installed cPanel on CentOS with chkconfig iptables off, as per the installation instructions, so have I been using the server for years with it off? Is that recommended? If it was off, how has it switched back on? No one has done that manually.
    0
  • Quick Strike
    Most likely you were running bare.. You should try to install csf firewall.
    0
  • marklewis
    Given that I can access WHM and cPanel using the whm. and cpanel. https urls, is there any problem with not having the custom ports open? My iptables now appears to be the original CentOS default which allows all the standard ports. I suspect a recent automatic reboot reinstalled that.
    0
  • cPanelMichael
    [quote="marklewis, post: 1705232">Given that I can access WHM and cPanel using the whm. and cpanel. https urls, is there any problem with not having the custom ports open?
    The cPanel ports are open for traffic if you are able to access them without the use of the proxy subdomains feature. I suggest using a firewall management utility such as CSF to help manage your firewall rules. Thank you.
    0

Please sign in to leave a comment.