|20,21: FTP. Note that ftp will use a "random high port number" if the client is in PORT mode, so you may need to add a port range into your /etc/proftpd.conf file to allow ftp connections, eg:|
PassivePorts 35000 35999and then open that port range as well in your firewall.
22: ssh access
25, 587: smtp for exim to recieve email
53: dns (named), so your sites resolve. TCP and UDP here.
80, 443: apache traffic, http and https
110, 995: client pop email access
143, 993: clients imap email access
2222: DirectAdmin Access
2703: Optional: RAZOR check for SpamAssassin
3306: mysql acess. You don't need to open this port if you don't want to allow remote mysql access, as most mysql scripts are all accessed locally.
|I wish to have a block_ip.sh so I can block IPs through DirectAdmin|
|I need a firewall. What are my options?|
© 2003 JBMC Software, Suite 173 3-11 Bellerose Drive, St Albert, AB T8N 1P7 Canada. Mon-Fri 9AM-5PM MST