LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices


Reply
  Search this Thread
Old 08-03-2009, 05:42 PM   #1
qwertyjjj
Senior Member
 
Registered: Jul 2009
Location: UK
Distribution: Cent OS5 with Plesk
Posts: 1,013

Rep: Reputation: 30
which ports open?


My server has a default firewall setting for a webserver which is:
1 All Any 22 TCP Allow Active
2 All Any 80 TCP Allow Active
3 All Any 443 TCP Allow Active
4 All Any 8443 TCP Allow Active
5 All 53 Any UDP Allow Active
6 All 123 Any UDP Allow Active
7 All ICMP Allow Active


Surely it only needs to be port 80 for a webserver doesn't it?
I also want to run squid proxy so I assume that is an extra port 3128.
If I have MySQL on the server but only Squid proxy is going to connect to it then no firewall rule is needed - is that correct because it will all be connections within the server?
 
Old 08-03-2009, 10:54 PM   #2
chrism01
LQ Guru
 
Registered: Aug 2004
Location: Sydney
Distribution: Rocky 9.2
Posts: 18,348

Rep: Reputation: 2749Reputation: 2749Reputation: 2749Reputation: 2749Reputation: 2749Reputation: 2749Reputation: 2749Reputation: 2749Reputation: 2749Reputation: 2749Reputation: 2749
See here http://iptables-tutorial.frozentux.n...r/services.txt
but briefly, you'll want 22 (ssh) if you want remote admin
80 = http, 443 = https (if you need ssl eg money txns)
53 = DNS
123 = ntp (network time protocol) keep clock sync'ed
icmp for ping
ask your provider about 8443
 
Old 08-04-2009, 08:46 AM   #3
qwertyjjj
Senior Member
 
Registered: Jul 2009
Location: UK
Distribution: Cent OS5 with Plesk
Posts: 1,013

Original Poster
Rep: Reputation: 30
Quote:
Originally Posted by chrism01 View Post
See here http://iptables-tutorial.frozentux.n...r/services.txt
but briefly, you'll want 22 (ssh) if you want remote admin
80 = http, 443 = https (if you need ssl eg money txns)
53 = DNS
123 = ntp (network time protocol) keep clock sync'ed
icmp for ping
ask your provider about 8443
8443 seems to be for plesk control panel...sort of like a GUI.
So I guess this doen't need to be open on the IP of the actual server.
If I have squid then I need the squid listening port open but surely http and https should be open for squid to connect out and in?
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
IP aliasing and open ports (27015 open on 4 aliased IPs) eSport-Eu Linux - Networking 0 01-14-2009 07:48 PM
Need to block all ports and open only select ports on Ubuntu 7.1 Mr.J Linux - Networking 1 11-18-2008 02:45 AM
open ports for utorrent using iptables n close smpt to that ports shtorrent00 Linux - Networking 2 09-30-2008 03:34 PM
Problem opening ports - ports appear open, but do not work. computer_freak_8 Linux - Software 10 09-20-2008 09:39 PM
Cannot Open Mail Server Ports 25, 110, and 220. Other Ports will open. Binxter Linux - Newbie 9 11-29-2007 02:03 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Server

All times are GMT -5. The time now is 12:43 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration