Firewalls!
Firewalls!
Hi guys,
Very much new to the world of server admin - Vesta is absolutely superb!
From what I can gather - it does'nt setup anything to do with iptables/firewalls - is this correct?
If so, is there a guide out there, or configuration you'd recommend for very generic "web hosting"?
So, sftp, ssh, mail, and http/https traffic allowed - everything else blocked? If configuring the security myself - is there anything else I need to do in terms of open ports to allow vesta to continue to function correctly?
Thanks in advance :)
Very much new to the world of server admin - Vesta is absolutely superb!
From what I can gather - it does'nt setup anything to do with iptables/firewalls - is this correct?
If so, is there a guide out there, or configuration you'd recommend for very generic "web hosting"?
So, sftp, ssh, mail, and http/https traffic allowed - everything else blocked? If configuring the security myself - is there anything else I need to do in terms of open ports to allow vesta to continue to function correctly?
Thanks in advance :)
Re: Firewalls!
Soon, in the next version, there will be a vesta firewall management panel. However, you can create rules into the iptables. I personally use CSF (http://configserver.com/cp/csf.html)
Re: Firewalls!
Firewall will be on next release 0.9.8-10 (July 7)
http://vestacp.com/roadmap/
http://vestacp.com/roadmap/
Re: Firewalls!
Can we have some kind of definitive update please? There's a lot of contradictory noise about firewalls on these forums.
Some posts say it's only going to be in some "commercial" version (so, presumably not in the free/open source version), some say it should already be shipped, some threads we need to install a 3rd party firewall like CSF. There's nothing I can find about firewalls in the documentation.
The version of Vesta I just installed, however, has a Firewall tab, which appears to be a UI for iptables and fail2ban. Is this what it is? Does it work? Is it a beta experimental feature, a tested official feature, or what? Or has this always been there and this discussion is about an additional firewall like CSF on top of iptables?
Some posts say it's only going to be in some "commercial" version (so, presumably not in the free/open source version), some say it should already be shipped, some threads we need to install a 3rd party firewall like CSF. There's nothing I can find about firewalls in the documentation.
The version of Vesta I just installed, however, has a Firewall tab, which appears to be a UI for iptables and fail2ban. Is this what it is? Does it work? Is it a beta experimental feature, a tested official feature, or what? Or has this always been there and this discussion is about an additional firewall like CSF on top of iptables?
-
tjebbeke
- Collaborator
- Posts: 783
- Joined: Mon May 11, 2015 8:43 am
- Contact:
- Os: CentOS 6x
- Web: apache + nginx
Re: Firewalls!
This topic has been more than a year old? There is a firewall, for me this firewall is good enough.
Re: Firewalls!
Are this Firewall configuration ok ? Please help me!! thank you so much!!
ACCEPT TCP / SSH 22 0.0.0.0/0
ACCEPT TCP / WEB 80,443 0.0.0.0/0
ACCEPT TCP / FTP 21,12000-12100 0.0.0.0/0
ACCEPT UDP / DNS 53 0.0.0.0/0
ACCEPT TCP / SMTP 25,465,587,2525 0.0.0.0/0
ACCEPT TCP / POP3 110,995 0.0.0.0/0
ACCEPT TCP / IMAP 143,993 0.0.0.0/0
ACCEPT TCP / DB 3306,5432 0.0.0.0/0
ACCEPT TCP / VESTA 8083 0.0.0.0/0
ACCEPT ICMP / PING 0 0.0.0.0/0
ACCEPT TCP / SSH 22 0.0.0.0/0
ACCEPT TCP / WEB 80,443 0.0.0.0/0
ACCEPT TCP / FTP 21,12000-12100 0.0.0.0/0
ACCEPT UDP / DNS 53 0.0.0.0/0
ACCEPT TCP / SMTP 25,465,587,2525 0.0.0.0/0
ACCEPT TCP / POP3 110,995 0.0.0.0/0
ACCEPT TCP / IMAP 143,993 0.0.0.0/0
ACCEPT TCP / DB 3306,5432 0.0.0.0/0
ACCEPT TCP / VESTA 8083 0.0.0.0/0
ACCEPT ICMP / PING 0 0.0.0.0/0