Solved

What router ports need to be forwarded for web hosting

Posted on 2011-03-04
14
774 Views
Last Modified: 2012-05-11
hello Experts,

I appologize in advance if I added this question to the wrong section.

My question is what ports need to be forwarded at the router for complete .net webhosting

I have windows server 2008 R2 Standard static ip address linksys router

sql server 2008, MySql server, remote desktop web access etc

a list would be most appreciated.

thank you so very much
0
Comment
Question by:XGIS
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 7
  • 4
  • 3
14 Comments
 
LVL 2

Expert Comment

by:Chris Walsh
ID: 35035644
You don't need to port forward ANY ports related to the sql server database.
Assuming a basic website, port forward port 80 (TCP).  Port 80 is HTTP.  If you use HTTPS (SSL) then you need to port forward port 443 but I don't think you are that for forward.

If you need RDP access then open port 3389.
0
 
LVL 7

Author Comment

by:XGIS
ID: 35035813
Hello thanks for your prompt response.

please see the attached image for ports that are already forwarded if I am missing any please advise Ports that are currently open
0
 
LVL 2

Expert Comment

by:Chris Walsh
ID: 35035849
You have RDP forwarded twice.  Not sure if that is an issue.

You have a lot of ports forwarding to your internal server - I would suggest switching those off that you don't actually require in the interest of security.   That saying, I know you are currently trying to get it to work and adding/keeping them in for the time being will help debug the process - you can always reduce later.

Because of all the ports you are forwarding, I wonder whether it is not a specific port issue but maybe another routing issue.  Can you (temporarily) set the router to forward ALL ports to your (internal) server IP address?

You might want to clarify exactly what you mean by "complete .net webhosting".  It is best to be clear as to what services your server is provding (web, email, ftp, remote desktop etc.)


0
The Ultimate Checklist to Optimize Your Website

Websites are getting bigger and complicated by the day. Video, images, custom fonts are all great for showcasing your product/service. But the price to pay in terms of reduced page load times and ultimately, decreased sales, can lead to some difficult decisions about what to cut.

 
LVL 7

Author Comment

by:XGIS
ID: 35035935
Hello and Thanks again the duplicate RDP port is disabled.

the services I want to enable are:

mail server
Webserver
SQL Server
My SQL Server
RDP
RDP Web Access via TS
DNS
AD
FTP
Website panel (formerly DotNetPanel)
Team Foundation Server
0
 
LVL 6

Expert Comment

by:richardburwood
ID: 35036002
If you are trying to allow direct web access to your sql server then the ports opened should work, however this is a very bad idea... If you just want to host a website that uses the database you only need to open port 80 (http) and 443 (https). It is also a very bad idea to expose the AD server directly to the internet.

What exactly are you trying to achieve?
0
 
LVL 6

Expert Comment

by:richardburwood
ID: 35036036
SQL Server needs port - 1433
MySQL needs port - 3306
0
 
LVL 7

Author Comment

by:XGIS
ID: 35036038
I am working on putting infrastructure together to setup a dataceter
0
 
LVL 7

Author Comment

by:XGIS
ID: 35036060
how would you recommend I secure every thing
0
 
LVL 2

Expert Comment

by:Chris Walsh
ID: 35036074
"I am working on putting infrastructure together to setup a dataceter"

If so, I would seriously get some training on how to securely manage such a system.  You sound like your knowledge with ports and services is not very strong and setting up such an environment is quite highly skilled with seroius concequences if security and control and knowlege are not taken seriously.
0
 
LVL 7

Author Comment

by:XGIS
ID: 35036166
would you be able to direct me to the appropriate sites to learn?
0
 
LVL 6

Accepted Solution

by:
richardburwood earned 250 total points
ID: 35036201
I think you probably need some help in setting up your data centre. From a security point of view you really don't want to expose alot of the services you are talking about. If you are setting up a data centre you really should not be using a Linksys Home / SOHO router.

"I am working on putting infrastructure together to setup a dataceter" & "how would you recommend I secure every thing"

You need to get someone to help you do this, in the politest possible way, your lack of knowledge of basic networking (TCP ports) means you really need to accept your limitations. I don't go and try to build bridges beacuse I am not a structual engineer...
0
 
LVL 6

Expert Comment

by:richardburwood
ID: 35036232
A good one to get an understanding of the technologies involved:

http://www.cert.org/tech_tips/home_networks.html
0
 
LVL 7

Author Comment

by:XGIS
ID: 35036314
thank you so very much
0
 
LVL 7

Author Closing Comment

by:XGIS
ID: 35036322
Honest and to the point, exactly what I need to hear.... thanks again
0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Periodically we have to update or add SSL certificates for customers. Depending upon your hosting plan you may be responsible for the installation and/or key generation. In the wake of Heartbleed many sites were forced to re-key. We will concen…
Creating an OSPF network that automatically (dynamically) reroutes network traffic over other connections to prevent network downtime.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…

691 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question