What ports should be open on server with wordpress sites only?

seomartin · May 2, 2022, 10:59am

Standard looks a little bit over for me:

TCP_IN = 20,21,22,25,53,80,110,995,143,443,465,587,993,995,1025,7080,8090,40110:40210

TCP_OUT =
20,21,22,25,43,53,80,110,113,443,587,993,995,8090,40110:40210

UDP_IN =
20,21,53,443

UDP_OUT =
20,21,53,113,123,443

I was wondering to permit only 80, 443, 8090

die2mrw007 · May 2, 2022, 11:18am

Please dont do that because your actions to only permit ports 80,443,8090 will lead to no access to your server ssh as SSH uses port 22…mails wont be sent from your wordpress as port 25, 465, 587 all these are used by mails.

shoaibkk · May 2, 2022, 11:20am

Port must for the http and 443 is for imap, and 8090 for cyberpanel.
these ports opened in the firewall are standred.
I do not recommend to do

MyIDKaTePe · May 2, 2022, 12:49pm

+1 …
not recommended…

but if you want to know
443 80 for normal website and ssl
8090 default cyberpanel

sometimes some apps (i dont know cyberpanel) will need random port to open something…
u need very very advance level know about networking and tracing port

seomartin · May 2, 2022, 9:03pm

conservatively we can assume that keeping only these ports open is a good security practice while keeping usability to a minimum

80, 443, 465, 587, 8090, 22 (usually change this one)

MyIDKaTePe · May 3, 2022, 4:38am

there is many software or apps. that will open/need random port to do request something
i think cyberpanel too…

better to analize first the port before closing down

seomartin · May 3, 2022, 11:21am

how do i know what ports cyberpanel uses? I tought it was only 8090

MyIDKaTePe · May 3, 2022, 12:56pm

default port is 8090