/ Register

Want more timely Centmin Mod News Updates?
Become a Member

Sysadmin Blocked Port 80 Completely

Discussion in 'System Administration' started by BamaStangGuy, Jun 30, 2017.

Previous Thread Next Thread
Loading...
  1. Jun 30, 2017 #1
    BamaStangGuy

    BamaStangGuy Active Member

    669
    192
    43
    May 25, 2014
    Ratings:
    +272
    Local Time:
    3:50 AM
    Tonight we blocked incoming and outgoing on Port 80 completely for our Christian Forums server. I haven't seen any issues pop up. Is there something I might be missing here that would need 80 open? We are strictly XenForo only on the server and we force everything to SSL via CloudFlare as it is.
     
  2. Jun 30, 2017 #2
    eva2000

    eva2000 Administrator Staff Member

    58,894
    12,490
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +19,122
    Local Time:
    6:50 PM
    Nginx 1.31.x
    MariaDB 10.x/11.4+/12.3+
  3. Jul 1, 2017 #3
    eva2000

    eva2000 Administrator Staff Member

    58,894
    12,490
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +19,122
    Local Time:
    6:50 PM
    Nginx 1.31.x
    MariaDB 10.x/11.4+/12.3+
    oh wait you blocked outgoing too on port 80 ? hmm centmin mod downloads including csf updates and yum etc some are non-https so would be port 80. Blocking incoming port 80 is ok. But blocking outgoing on port 80 might have issues !

    I am assuming when you mean block, at the CSF firewall level ?
     
  4. Jul 1, 2017 #4
    BamaStangGuy

    BamaStangGuy Active Member

    669
    192
    43
    May 25, 2014
    Ratings:
    +272
    Local Time:
    3:50 AM
    Correct. I haven't run into any issues yet that I can see.
     
  5. Jul 1, 2017 #5
    eva2000

    eva2000 Administrator Staff Member

    58,894
    12,490
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +19,122
    Local Time:
    6:50 PM
    Nginx 1.31.x
    MariaDB 10.x/11.4+/12.3+
    k just keep an eye on things
     
  6. Jul 2, 2017 #6
    buik

    buik “The best traveler is one without a camera.”

    2,044
    527
    113
    Apr 29, 2016
    Flanders
    Ratings:
    +1,691
    Local Time:
    10:50 AM
    @BamaStangGuy In this case, your CloudFlare proxy would normally handle the redirection from HTTP to HTTPS i.e. 80 > 443.

    Please note that if you are considering to stop using the Cloudflare service one day.
    You should reanalyze this case again.

    Because if you don't use a proxy and port 80 is blocked.
    Your web server won't redirect some older clients, trying to visit via non SSL.
    It could lose potential users.
     
Previous Thread Next Thread
Loading...

.