Facebook
Twitter
G
GytisR
Guest
Hello, I have several problems with Plesk Firewall which can be controlled from Parallels Power panel:
1. When I choose "Advanced firewall mode with default policy Drop", applications on my server has problems connecting outside, e. g. wget is not able to download packages, YUM is not able to get repository data, etc. even though all OUTGOING connections are allowed ("All tcp output allowed"). If I add an Input rule allowing absolutely all INCOMMING traffic, all programs connect and work successfully. But I see it as security flaw to allow all incomming connections.
2. I can't enable firewall logging to discover what does firewall block in my first problem. As Plesk Firewall uses iptables, I tried to add 'LOG --log-prefix "DENIED: "' on /etc/sysconfig/iptables but no success - iptables doesn't restart/start while regular CentOS installations (without Plesk) accepts LOG command. Without logging I can not discover what packets are blocked by the firewall.
My question is why sould applications connecting outside would ever want me allowing all incomming traffic and how do I log firewall events that was blocked so that I could build secure (but allowing to WORK) rules.
Running Plesk 9.5.2 on latest CentOS 64 bit.
1. When I choose "Advanced firewall mode with default policy Drop", applications on my server has problems connecting outside, e. g. wget is not able to download packages, YUM is not able to get repository data, etc. even though all OUTGOING connections are allowed ("All tcp output allowed"). If I add an Input rule allowing absolutely all INCOMMING traffic, all programs connect and work successfully. But I see it as security flaw to allow all incomming connections.
2. I can't enable firewall logging to discover what does firewall block in my first problem. As Plesk Firewall uses iptables, I tried to add 'LOG --log-prefix "DENIED: "' on /etc/sysconfig/iptables but no success - iptables doesn't restart/start while regular CentOS installations (without Plesk) accepts LOG command. Without logging I can not discover what packets are blocked by the firewall.
My question is why sould applications connecting outside would ever want me allowing all incomming traffic and how do I log firewall events that was blocked so that I could build secure (but allowing to WORK) rules.
Running Plesk 9.5.2 on latest CentOS 64 bit.
