Want more timely Centmin Mod News Updates?
Become a Member

Sysadmin Blocked Port 80 Completely

Discussion in 'System Administration' started by BamaStangGuy, Jun 30, 2017.

  1. BamaStangGuy

    BamaStangGuy Active Member

    470
    137
    43
    May 25, 2014
    Ratings:
    +180
    Local Time:
    1:54 PM
    Tonight we blocked incoming and outgoing on Port 80 completely for our Christian Forums server. I haven't seen any issues pop up. Is there something I might be missing here that would need 80 open? We are strictly XenForo only on the server and we force everything to SSL via CloudFlare as it is.
     
  2. eva2000

    eva2000 Administrator Staff Member

    30,152
    6,782
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +10,133
    Local Time:
    4:54 AM
    Nginx 1.13.x
    MariaDB 5.5
    • Like Like x 1
  3. eva2000

    eva2000 Administrator Staff Member

    30,152
    6,782
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +10,133
    Local Time:
    4:54 AM
    Nginx 1.13.x
    MariaDB 5.5
    oh wait you blocked outgoing too on port 80 ? hmm centmin mod downloads including csf updates and yum etc some are non-https so would be port 80. Blocking incoming port 80 is ok. But blocking outgoing on port 80 might have issues !

    I am assuming when you mean block, at the CSF firewall level ?
     
  4. BamaStangGuy

    BamaStangGuy Active Member

    470
    137
    43
    May 25, 2014
    Ratings:
    +180
    Local Time:
    1:54 PM
    Correct. I haven't run into any issues yet that I can see.
     
  5. eva2000

    eva2000 Administrator Staff Member

    30,152
    6,782
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +10,133
    Local Time:
    4:54 AM
    Nginx 1.13.x
    MariaDB 5.5
    k just keep an eye on things
     
  6. bassie

    bassie Active Member

    535
    116
    43
    Apr 29, 2016
    Ratings:
    +348
    Local Time:
    8:54 PM
    @BamaStangGuy In this case, your CloudFlare proxy would normally handle the redirection from HTTP to HTTPS i.e. 80 > 443.

    Please note that if you are considering to stop using the Cloudflare service one day.
    You should reanalyze this case again.

    Because if you don't use a proxy and port 80 is blocked.
    Your web server won't redirect some older clients, trying to visit via non SSL.
    It could lose potential users.
     
    • Like Like x 1
    • Informative Informative x 1