• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Question I have several questions about the firewall.

P

python

Regular Pleskian
Use centos 7.3 that comes with firewalld installed.

Should I enable iptables also to work with firewalld?
With the plesk firewall extension can I create the same rules as firewalld?

Those are my doubts although I think I should only use firewalld, but I do not know how to create rules such as blocking invalid packets, etc ...

I would need a guide to configure firewalld in the best way possible to attack two ddos.
 
Hello, plesk help and law but I still have doubts.
For example how to block invalid packets, etc ...
Does the firewall extension use firewalld or iptables?

By security theme that is better to use iptables, firewalld or with the plesk firewall extension is enough?

Does anyone know of any post to make a secure firewall configuration?

I have thousands of doubts such as file2ban that firewall uses firewalld or iptables?

If by default centos 7 leaves you activated firewalld will be that you have to use this alone but I'm not clear.

Maybe in firewalld you can create static rules with the iptables commands but I'm not sure, I hope someone will guide me in my doubts with the firewall.
regards
 
Plesk is using iptables. Firewalld must be deactivated, else it could interfere with the other settings. fail2ban is using iptables.

You are free to install your own chains and rules in iptables before and beyond what fail2ban does.

Plesk firewall and Fail2Ban are two different things. Plesk firewall blocks or allows traffic on certain ports perpertually while Fail2Ban blocks IP addresses of incoming traffic temporarily when these misbehave.
 
I too have a similar question.. about the relationship of firewall to iptables.

I have been blocking IP addresses manually using the firewall with my own firewall rule. It works well but is long winded, with one IP address at a time loaded.
I examined the iptables and sure.. all the adresses in my rule are there - e.g.
-A INPUT -s 62.76.42.249/32 -p tcp -j DROP

If I add a rule manually then that too appears in iptables - and works

sudo iptables -A INPUT -s 62.76.43.166 -p tcp -j DROP
But.. it does not appear in the Firewall list under my rule.
It does appear in iptables and looks identical
-A INPUT -s 62.76.43.166/32 -p tcp -j DROP

I have a feeling my manual addition is only temporary, and I have saved all the contents to a file, just in case I have to reboot.
sudo iptables-save > /var/log/iptablessnh

QUESTION.. How can I manually add an address with a command, and also make it part of the firewall rule, and therefore permanent.

regards

Steve
 
You must log in or register to reply here.

Similar threads

Azurel
Issue Firewall disabled?
Replies
9
Views
3K
VNick
V
C
Question Securing Docker ports to local access only with firewalld
Replies
8
Views
9K
captainhook
C
A
Resolved Plesk Firewall and Samba
2
Replies
22
Views
3K
Raul A.
R
S
Question Rule to block in plesk firewall all traffic from ports that plesk does not use?
Replies
4
Views
1K
SalvadorS
S
F
Issue SQLmap attack detected (ID: 218500) on blank page
Replies
5
Views
2K
abdulsemiu
A
Back
Top