Solved

Can you give me the consequenses of doing this ?

Posted on 2008-06-20
6
233 Views
Last Modified: 2010-04-20
What will happen if my server:

Shouldn't let to expose 25 and 5432 through the firewall.
Unblock ports 22 for ssh, 80 for http and 443 for https.
25 should be kept open for outgoing traffic only.
0
Comment
Question by:jaisonshereen
6 Comments
 
LVL 6

Expert Comment

by:CorpComp
ID: 21835674
What does your server do?

What are you trying to achieve?

What OS are you running?
0
 

Author Comment

by:jaisonshereen
ID: 21835693
What does your server do?
I dont know. How to check
But i know there is a website hosted in apache/mogrel. And a postgres db.

What are you trying to achieve?
Figuring out my client will scold me. If i put rules in the production server.

What OS are you running?

uname -a
Linux footest 2.6.18-53.el5 #1 SMP Mon Nov 12 02:22:48 EST 2007 i686 i686 i386 GNU/Linux
0
 
LVL 40

Accepted Solution

by:
omarfarid earned 200 total points
ID: 21836088
The first lines you posted are recommendations for certain tcp ports (which are applications ports like smtp, ssh, http, https, etc) to be either denied / not allowed or allowed to pass through your firewall in order to protect your server. If you don't allow e.g. port 80 to your server then no one can reach your webserver. similarly, if you allow 23 then others from  outside your firewall can telnet to your server which could be insecure.
0
Master Your Team's Linux and Cloud Stack

Come see why top tech companies like Mailchimp and Media Temple use Linux Academy to build their employee training programs.

 
LVL 7

Assisted Solution

by:dineesh
dineesh earned 200 total points
ID: 21837356
Looks like you are trying to setup a Mail server with webmail access over 80&443.

in that case you will be able just send out mails and not receive any as 25 inward is also a must for a mail server.
0
 

Author Comment

by:jaisonshereen
ID: 21838184
Mail server will send and receive mails ... all the mails will go/receive  through the port 25 that is SMTP port.

But as per your comment says need to block 25 for inward traffic. If that the case web mail will not receive any mails right?
0
 
LVL 6

Assisted Solution

by:CorpComp
CorpComp earned 100 total points
ID: 21839316
That is correct.  If you block port 25 for inward traffic, your mail server will not receive incoming email.

0

Featured Post

VMware Disaster Recovery and Data Protection

In this expert guide, you’ll learn about the components of a Modern Data Center. You will use cases for the value-added capabilities of Veeam®, including combining backup and replication for VMware disaster recovery and using replication for data center migration.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Java performance on Solaris - Managing CPUs There are various resource controls in operating system which directly/indirectly influence the performance of application. one of the most important resource controls is "CPU".   In a multithreaded…
Linux users are sometimes dumbfounded by the severe lack of documentation on a topic. Sometimes, the documentation is copious, but other times, you end up with some obscure "it varies depending on your distribution" over and over when searching for …
Connecting to an Amazon Linux EC2 Instance from Windows Using PuTTY.
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

820 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question