• Dear Pleskians! The Plesk Forum will be undergoing scheduled maintenance on Monday, 7th of July, at 9:00 AM UTC. The expected maintenance window is 2 hours.
    Thank you in advance for your patience and understanding on the matter.

Question Port Forwarding

Sysop

Sysop

Basic Pleskian
How can I forward certain IP traffic coming from port 80 to another port on my server (eg. Port 7272)?

Screen Shot 2021-04-30 at 12.34.48 PM.png
I tried to do this from within Plesk Firewall but I get an error stating "Invalid IP address or network." (eg. Destination IP = 25.25.25.25:7272).
 
You could try and use something like:

Additional nginx directives

Code: 
location = / {
return 301 https://domain.tld:7272;
}

I hope it helps.
 
Better to use proxy_pass for a transparent redirect.
Also, this will probably conflict with redirect to https if that is active in nginx. Port redirecting by firewall would still work because it catches the packets before nginx.
 
mow said:
Better to use proxy_pass for a transparent redirect.
Also, this will probably conflict with redirect to https if that is active in nginx. Port redirecting by firewall would still work because it catches the packets before nginx.
Click to expand...
I was wanting to use the firewall although when i installed firewalld it conflicted with the Plesk firewall, so I’m not quite sure how to handle that.

Do you have an example of the nginx directive to use proxy pass in the way you describe?

Thanks!
 
Sysop said:
I was wanting to use the firewall although when i installed firewalld it conflicted with the Plesk firewall, so I’m not quite sure how to handle that.

Do you have an example of the nginx directive to use proxy pass in the way you describe?

Thanks!
Click to expand...
Note: there's been three different solutions mentioned.

a) a redirect - this will receive an HTTP request, and respond with a location header asking the browser to access the new URL. Likely not what you want.
b) a HTTP proxy - this was receive the HTTP request, and send that same request to the server you're proxying to, then return that response to the browser. Ths can act as a "port forwarder" - but this only operates on an application level, in this case, HTTP.
c) port forwarding can also be done at a lower level that'll pass all, or some connections to the port. IPTables is a great solution for this: Linux Port Forwarding Using iptables - SysTutorials. This is the solution you want if you're not forwarding HTTP traffic

The implication for c) is that all traffic that matches the rule will get forwarded. Since you're on 80, all HTTP traffic will be forwarded to 7272, whether you want to or not. Therefore, if you've also got Apache listening on the IP you want to port-forward, Apache will no longer server the requests as the firewall steps in before Apache even gets the request.
 
You must log in or register to reply here.

Similar threads

R
Question Disable FTP on single ip address
Replies
3
Views
817
Kaspar
K
EdgarEstrada
Issue Rigid firewall configuration.
Replies
3
Views
790
Kaspar
K
S
Question Plesk Domain forward from internal Server
Replies
1
Views
454
scsa20
scsa20
Z
Issue Blocked ports 25-587
Replies
1
Views
885
zihniates
Z
L
Question Question before activating Plesk firewall
Replies
2
Views
617
VanessaChuuy
VanessaChuuy
Back
Top