What ports need to be opened on firewall for HSPcomplete VE?

Article ID: 2202 
Last Review: Oct,6 2008
Author: Tarasov Yuri APPLIES TO:
  • HSPcomplete

Resolution

The following ports should be always open for HSPcomplete VE on firewall:

  • TCP port 80 for incoming HTTP requests from external network
  • TCP port 443 for incoming HTTPS requests on HSPcomplete system - it is preferred to use HTTPS connection for HSPcomplete Store and Control Panels as Resellers and Customers could enter some private information in the Store and may would like to use HTTPS connection over external network.
  • TCP port 25 for outgoing conections to public network or email gateway (if Mail Transport Agent inside HSPcomplete VE is configured to send all mail messages through the email gateway) - HSPcomplete VE should be able to send email notifications to Provider, Reseller and Customers
  • TCP/UDP port 53 - HSPcomplete VE should be able to send DNS notifications to manageable nameservers (publically available) registered in HSPcomplete system and provide DNS zone tranfer to the manageable nameservers
  • TCP port 22 for outgoing SSH connections to Virtuozzo hardware nodes and SSH-manageable nameservers registered in HSPcomplete system
  • TCP port 8443 for outgoing HTTPS connections to Plesk nodes registered in HSPcomplete system
  • TCP ports 80 and 443 for outgoing HTTP/HTTPS API connections to Sitebuilder nodes registered in HSPcomplete system

HSPcomplete system also should be able to communicate with DNS registrars' gateways, Payment gateways and AntiFraud systems (VariLogiX just for example) - exact firewall configuration in this case is depended on which Domain registration, Payment and AntiFraud plugins are used in HSPcomplete system. Usually it should be enough to open all connections to Domain registration/Payment gateway used in the plugin configuration (on Top > Service Director > Domain Manager > Plug-ins > Plug-in Configuration or Top > Commerce Director > Online Payments > Payment Plug-ins > Plug-in configuration screen).


 

 

Additional information

 

HSPcomplete system is able to perform basic firewall configuration and load all required rules itself, you may check this article for more details on basic firewall configuration script for HSPcomplete system. 

Keywords: firewall
Subscription for this article changesSubscription for this article changes

Please provide feedback on this article

Did this article help you solve your issue?
Yes
No
Partially
I do not know yet
 
Strongly Agree   Strongly Disagree
  9 8 7 6 5 4 3 2 1
The article is easy to understand
The article is accurate
Additional Comments:
*Please provide us with your email address in case we need to contact you.
captcha *Please type the code you can see.
* - required fields