CSF Keep only the important ports

Hi

On my server i do not use any remote services and i am thinking to try to keep only the basic ports open...

So which ports do you recommend me to use?

Code:

# Allow incoming TCP ports
TCP_IN = "20,21,1021,25,53,80,110,143,161,443,465,587,993,995,1110,1186,1194,3000,3334,8080,8888,81,9312,9418,6081,6082,30865,30001:50011"

# Allow outgoing TCP ports
TCP_OUT = "993,995,465,587,1110,1194,9418,20,21,22,25,53,80,110,113,443,587,993,995"

# Allow incoming UDP ports
UDP_IN = "67,68,1110,33434:33534,20,21,53"

# Allow outgoing UDP ports
# To allow outgoing traceroute add 33434:33523 to this list
UDP_OUT = "67,68,1110,33434:33534,20,21,53,113,123"

I am thinking of keeping :

Tcp in and out : web 80 phpmyadmin 9418 ftp 21 ssh 22(for example) ssl 443 ?
Udp: don't know if any service use any port....

 

One last question

Is CT_LIMIT useless when use Cloudflare as it doesn't read real user's ip's from nginx log file?