Can't ping my website when using the default Ports
Hello,
I'm using the official package of (AlmaLinux + cPanel) at AWS.
When I create the server, I see cPanel has set its ports for my server, but unfortunately, these ports don't allow me to ping any website hosted on this server.
Find the screenshot for the default cPanel ports below
-
To enable ping, you need to allow the protocol "ICMP" inbound to the server. I'm guessing the firewall used (at Amazon AWS) blocks everything by default (which is good security practice) and so it'll block ICMP request by default.
You might find the following Amazon help pages useful:
* https://aws.amazon.com/blogs/compute/enhancing-site-security-with-new-lightsail-firewall-features/
If you are running an "on-server firewall" (such as the popular free ConfigServer CSF ), then you'll need to ensure that Ping is also allowed in those settings (in CSF, ensure ICMP_IN is "On").
1 -
Hey there! Is it possible that you have a higher-level firewall that also needs to be configured, such as this? https://aws.amazon.com/network-firewall/
Since things are working well on the cPanel side of things, this may be a better question for AWS directly.
0 -
Oh, good point rbairwell! Ping itself could be blocked, even though the site itself my be working fine.
I personally haven't used a "ping" check to verify anything in a long time.
0 -
Thanks rbairwell
I found here the full list of the required ports to be opened: https://support.cpanel.net/hc/en-us/articles/360055135534-What-ports-should-I-open-in-my-network-firewall
What is the difference between opening these ports only and opening all the ports (0 - 65535)?
0 -
In general, for the best security of your system you should only open the ports that are necessary for your server to function.
0
Please sign in to leave a comment.
Comments
5 comments