• We value your experience with Plesk during 2024
    Plesk strives to perform even better in 2025. To help us improve further, please answer a few questions about your experience with Plesk Obsidian 2024.
    Please take this short survey:
    https://pt-research.typeform.com/to/AmZvSXkx
  • The Horde webmail has been deprecated. Its complete removal is scheduled for April 2025. For details and recommended actions, see the Feature and Deprecation Plan.
  • We’re working on enhancing the Monitoring feature in Plesk, and we could really use your expertise! If you’re open to sharing your experiences with server and website monitoring or providing feedback, we’d love to have a one-hour online meeting with you.

Resolved Plesk Firewall - SE Linux, firewalld, iptables

B

bskrakes

Basic Pleskian
Hello,

I am wondering if anyone can confirm how the extension Plesk Firewall extension works? I.E is Plesk Firewall using SE Linux, firewalld or old school iptables?

If I remove Plesk Firewall what does this do to the system?

Does anyone know why Plesk Firewall doesn't show up on the Plesk Extension website?

Thank you,
 
bskrakes said:
Hello,

I am wondering if anyone can confirm how the extension Plesk Firewall extension works? I.E is Plesk Firewall using SE Linux, firewalld or old school iptables?
Click to expand...
iptables


bskrakes said:
Does anyone know why Plesk Firewall doesn't show up on the Plesk Extension website?
Click to expand...
It's in Plesk components, not extensions.
Where you decide to have dovecot or courier, install PHP-versions....

bskrakes said:
If I remove Plesk Firewall what does this do to the system?
Click to expand...
It leaves you with an empty iptables.

What I do on a "maiden plesk setup" is use "iptables-save' to have a backup of the current firewall.
Then study the file if there are "new things"
I then use my own iptables file I have in /etc
make sure that gets loaded with iptables-restore and that's it.
 
Thanks for your reply mr-wolf. Do you use SELinux or just iptables?

I find it strange that Pleks Firewall shows up under "Extensions" after installed, although like you say it is a "Component" under the additional install features of Plesk.
 
bskrakes said:
Thanks for your reply mr-wolf. Do you use SELinux or just iptables?

I find it strange that Pleks Firewall shows up under "Extensions" after installed, although like you say it is a "Component" under the additional install features of Plesk.
Click to expand...
Maybe that's an additional front-end?
I wouldn't know as I always remove the Plesk firewall from components.
 
Ok thanks mr-wolf. I am using a firewall appliance that sits in front of the server plus SELinux which I think is sufficient.

The built in Security Advisor recommends installing Plesk Firewall but iptables is old school. It would be nice if they modified the Plesk add-on to use firewalld and/or tie into SELinux.
 
You must log in or register to reply here.

Similar threads

D
Issue Plesk Firewall does not add changes to zone (CloudLinux)
Replies
4
Views
459
Kaspar@Plesk
Kaspar@Plesk
A
Issue Firewall enabled but rules still gray
Replies
8
Views
2K
Sebahat.hadzhi
Sebahat.hadzhi
S
Issue Cant activate the plesk firewall
Replies
5
Views
885
martinez.marcias@gmai
M
Azurel
Issue Firewall disabled?
Replies
9
Views
3K
VNick
V
C
Question Securing Docker ports to local access only with firewalld
Replies
8
Views
7K
captainhook
C
Back
Top