Get the most out of your Centmin Mod LEMP stack
Become a Member

CSF CSF firewall and google cloud firewall

Discussion in 'Other Centmin Mod Installed software' started by ahmed, Apr 9, 2017.

  1. ahmed

    ahmed Active Member

    361
    49
    28
    Feb 21, 2017
    Ratings:
    +63
    Local Time:
    3:13 PM
  2. eva2000

    eva2000 Administrator Staff Member

    53,178
    12,112
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,647
    Local Time:
    11:13 PM
    Nginx 1.27.x
    MariaDB 10.x/11.4+
    Centmin Mod is tied to CSF Firewall as anything Centmin Mod install maybe auto setup and configured for CSF Firewall compatibility. If you uninstall CSF Firewall and use another firewall, then Centmin Mod won't be able to auto setup and configure stuff like port whitelisting etc. So you would have to manually manage non-CSF Firewall related updates/port whitelisting yourself instead of letting Centmin Mod do some of the leg work for you. So stuff like pure-ftpd passive port whitelisting, git, postfix outbound emails etc would all need to be managed by you for proper operation as opposed to Centmin Mod auto configuring them all via CSF Firewall.
     
  3. ahmed

    ahmed Active Member

    361
    49
    28
    Feb 21, 2017
    Ratings:
    +63
    Local Time:
    3:13 PM
    the problem in google firewall is I have to do the port editing inside the google firewall
    regardless of what firewall installed on the server.


    the only ports opened is the usual ports for http and https

    I dont use pure FTP at all , I use SFTP

    -what ports do I need to take care of for centminmod to work properly?

    I need also to uninstall Pureftp, since I dont use it
     
  4. eva2000

    eva2000 Administrator Staff Member

    53,178
    12,112
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,647
    Local Time:
    11:13 PM
    Nginx 1.27.x
    MariaDB 10.x/11.4+
  5. ahmed

    ahmed Active Member

    361
    49
    28
    Feb 21, 2017
    Ratings:
    +63
    Local Time:
    3:13 PM
    as I expected the google firewall blocks the trafice no matter what CSF rules are

    here is the check on this port:

    Code:
    telnet 100.100.100.100 465
    
    Trying 100.100.100.100...
    
    telnet: connect to address 100.100.100.100: Connection refused
    
    telnet: Unable to connect to remote host
    
     
  6. eva2000

    eva2000 Administrator Staff Member

    53,178
    12,112
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,647
    Local Time:
    11:13 PM
    Nginx 1.27.x
    MariaDB 10.x/11.4+
    If you use Google Cloud Firewall, you need to manually white list Centmin Mod used/required ports yourself. Centmin Mod can't configure Google Cloud Firewall, only CSF Firewall.
     
  7. ahmed

    ahmed Active Member

    361
    49
    28
    Feb 21, 2017
    Ratings:
    +63
    Local Time:
    3:13 PM