• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • We are looking for U.S.-based freelancer or agency working with SEO or WordPress for a quick 30-min interviews to gather feedback on XOVI, a successful German SEO tool we’re looking to launch in the U.S.
    If you qualify and participate, you’ll receive a $30 Amazon gift card as a thank-you. Please apply here. Thanks for helping shape a better SEO product for agencies!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Issue Almalinux 9 and Firewall

O

OverWolf

Regular Pleskian
Server operating system version
Almalinux 9
Plesk version and microupdate number
18.0.52
Hi,

I've tested that any change that I do with Firewall with Plesk interface, it isn't working. If I want to apply it I must connect to server (ssh) and use command firewall-cmd --add-port=xxxx.

Why ?
 
I've seen that Plesk have its interface :

Code: 
plesk (active)
  target: default
  icmp-block-inversion: no
  interfaces: ens3
  sources:
  services:
  ports: 22/tcp 21/tcp 25/tcp 53/tcp 53/udp 80/tcp 110/tcp 143/tcp 443/tcp 465/tcp 587/tcp 993/tcp 995/tcp 8443/tcp 8447/tcp 8880/tcp
  protocols:
  forward: yes
  masquerade: no
  forward-ports:
  source-ports:
  icmp-blocks:
  rich rules:

is this the problem ?
 
Hi Peter,

on Almalinux there is firewalld 1.2.1 (only firewalld) and then I've installed Plesk. So, I think that Plesk Firewall can work as expect, but no, it seems that Plesk is working on its zone, while firewalld is working on zone=public (that zone that it's the default for incoming traffic)
 
So far I've not seen similar reports. Would it be possible that you open a ticket with Plesk support so that an engineer can examine this behavior on your server?
 
Hi,

how can I remove ftp passive mode rules and set my rules?

I've seen that in firewall zone plesk, there are this ports open 49152-65535/tcp and I think that there are for fpt, but I want to modify this range.

How can I do ?

P.S.:
I've tried to remove this range from firewall-cmd command but this ports remain open.
 

Attachments

  • PleskFW.jpg
    PleskFW.jpg
    62.4 KB · Views: 9
Do not close these ports. It will only prohibit FTP to work and will also have an effect on other services who need random ports for data transfers. It also makes no sense to only close part of these ports, because then software will just use the remaining, narrowing the number of available ports if several services and users concurrently want to transfer data from and to the servers.
 
You must log in or register to reply here.

Similar threads

jola
Issue Firewall stops working
Replies
7
Views
854
Peter van der Kleij
P
P
Resolved Port 25 blocked despite firewalls explicitly open
Replies
13
Views
785
learning_curve
learning_curve
D
Question How to install PHP 7.3 FPM on AlmaLinux 9?
Replies
2
Views
1K
Raul A.
R
D
Question Missing xinetd in Almalinux 9 with Obsidian?
Replies
0
Views
607
danimora
D
L
Issue Extensions and firewall dont show up
Replies
11
Views
2K
WSNHosting
WSNHosting
Back
Top