• If you are still using CentOS 7.9, it's time to convert to Alma 8 with the free centos2alma tool by Plesk or Plesk Migrator. Please let us know your experiences or concerns in this thread:
    CentOS2Alma discussion

Resolved Plesk Firewall - SE Linux, firewalld, iptables

B

bskrakes

Basic Pleskian
Hello,

I am wondering if anyone can confirm how the extension Plesk Firewall extension works? I.E is Plesk Firewall using SE Linux, firewalld or old school iptables?

If I remove Plesk Firewall what does this do to the system?

Does anyone know why Plesk Firewall doesn't show up on the Plesk Extension website?

Thank you,
 
bskrakes said:
Hello,

I am wondering if anyone can confirm how the extension Plesk Firewall extension works? I.E is Plesk Firewall using SE Linux, firewalld or old school iptables?
Click to expand...
iptables


bskrakes said:
Does anyone know why Plesk Firewall doesn't show up on the Plesk Extension website?
Click to expand...
It's in Plesk components, not extensions.
Where you decide to have dovecot or courier, install PHP-versions....

bskrakes said:
If I remove Plesk Firewall what does this do to the system?
Click to expand...
It leaves you with an empty iptables.

What I do on a "maiden plesk setup" is use "iptables-save' to have a backup of the current firewall.
Then study the file if there are "new things"
I then use my own iptables file I have in /etc
make sure that gets loaded with iptables-restore and that's it.
 
Thanks for your reply mr-wolf. Do you use SELinux or just iptables?

I find it strange that Pleks Firewall shows up under "Extensions" after installed, although like you say it is a "Component" under the additional install features of Plesk.
 
bskrakes said:
Thanks for your reply mr-wolf. Do you use SELinux or just iptables?

I find it strange that Pleks Firewall shows up under "Extensions" after installed, although like you say it is a "Component" under the additional install features of Plesk.
Click to expand...
Maybe that's an additional front-end?
I wouldn't know as I always remove the Plesk firewall from components.
 
Ok thanks mr-wolf. I am using a firewall appliance that sits in front of the server plus SELinux which I think is sufficient.

The built in Security Advisor recommends installing Plesk Firewall but iptables is old school. It would be nice if they modified the Plesk add-on to use firewalld and/or tie into SELinux.
 
You must log in or register to reply here.

Similar threads

Azurel
Issue Firewall disabled?
Replies
9
Views
2K
VNick
V
C
Question Securing Docker ports to local access only with firewalld
Replies
8
Views
5K
captainhook
C
E
Resolved NGinx deny rules and Firewall (iptables?)
Replies
4
Views
1K
epertinez
E
P
Issue plesk firewall 2.1.5-412 still has problems
2
Replies
20
Views
2K
PeterKi
P
G
Issue Database Malware or False Positive?
Replies
2
Views
386
Gene Steinberg
G
Back
Top