Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


Skip to content
  • Categories
  • Recent
  • Tags
  • Popular
  • Bookmarks
  • Search
Skins
  • Light
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor

  • Default (No Skin)
  • No Skin
Collapse
Brand Logo

Cloudron Forum

Apps | Demo | Docs | Install
  1. Cloudron Forum
  2. Support
  3. Open ports in firewall

Open ports in firewall

Scheduled Pinned Locked Moved Solved Support
firewall
6 Posts 3 Posters 1.6k Views 3 Watching
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • imc67I Offline
      imc67I Offline
      imc67
      translator
      wrote on last edited by girish
      #1

      Hi,

      I was searching through help files and forum but didn't found a clear answer so maybe someone knows:

      I want to install Zabbix Agent on the Cloudron server, it communicates to the 'external' Zabbix Server via ports 10050 and/or 10051. So I need to open these ports and even better allow only comms to specific IP.

      In the Cloudron Docs (https://cloudron.io/documentation/security/#configuring-cloud-firewall) it says NOT to change/use IPtables, it also says you should then use DigitalOcean Cloud Firewall. But here is some discrepancy i.m.h.o.:

      1. if I want to use DO Cloud Firewall, how do I switch off the "internal" firewall?
      2. On that Docs page is a table of standard open ports I must configure in DO Cloud Firewall, but how do I know which extra ports are configured by or after installing an app as these have to be manually changed in the DO Cloud Firewall?
      3. Is it a desired feature if Cloudron is able to configure (is there an API?) the DO Cloud Firewall?

      Thanks already for your answers and opinions.

      Kind regards,

      Marcel

      necrevistonnezrN 1 Reply Last reply
      1
      • imc67I Offline
        imc67I Offline
        imc67
        translator
        wrote on last edited by
        #2

        No one?!

        murgeroM 1 Reply Last reply
        0
        • imc67I imc67

          No one?!

          murgeroM Offline
          murgeroM Offline
          murgero
          App Dev
          wrote on last edited by
          #3

          @imc67 said in Open ports in firewall:

          No one?!

          For something like this, it's usually unsupported by the community as it goes beyond what cloudron is used for. That said, you will need to modify IPTables to add the ports. This might change in the future though as the project I believe was stated somewhere else that might move away from IPT.

          --
          https://urgero.org
          ~ Professional Nerd. Freelance Programmer. ~

          necrevistonnezrN 1 Reply Last reply
          0
          • imc67I imc67

            Hi,

            I was searching through help files and forum but didn't found a clear answer so maybe someone knows:

            I want to install Zabbix Agent on the Cloudron server, it communicates to the 'external' Zabbix Server via ports 10050 and/or 10051. So I need to open these ports and even better allow only comms to specific IP.

            In the Cloudron Docs (https://cloudron.io/documentation/security/#configuring-cloud-firewall) it says NOT to change/use IPtables, it also says you should then use DigitalOcean Cloud Firewall. But here is some discrepancy i.m.h.o.:

            1. if I want to use DO Cloud Firewall, how do I switch off the "internal" firewall?
            2. On that Docs page is a table of standard open ports I must configure in DO Cloud Firewall, but how do I know which extra ports are configured by or after installing an app as these have to be manually changed in the DO Cloud Firewall?
            3. Is it a desired feature if Cloudron is able to configure (is there an API?) the DO Cloud Firewall?

            Thanks already for your answers and opinions.

            Kind regards,

            Marcel

            necrevistonnezrN Offline
            necrevistonnezrN Offline
            necrevistonnezr
            wrote on last edited by necrevistonnezr
            #4

            @imc67
            You can open ports but again, it's unsupported. See for an example: https://forum.cloudron.io/post/3278 and then make the rule persistent: https://forum.cloudron.io/topic/1780/cloudron-overrides-iptables-persistent/ (see the last 4 posts in that thread)

            1 Reply Last reply
            1
            • murgeroM murgero

              @imc67 said in Open ports in firewall:

              No one?!

              For something like this, it's usually unsupported by the community as it goes beyond what cloudron is used for. That said, you will need to modify IPTables to add the ports. This might change in the future though as the project I believe was stated somewhere else that might move away from IPT.

              necrevistonnezrN Offline
              necrevistonnezrN Offline
              necrevistonnezr
              wrote on last edited by
              #5

              @murgero said in Open ports in firewall:

              This might change in the future though as the project I believe was stated somewhere else that might move away from IPT.

              I think Cloudron intends to move to ufw which still uses iptables, see https://forum.cloudron.io/topic/1838/replace-iptables-with-nftables

              murgeroM 1 Reply Last reply
              0
              • necrevistonnezrN necrevistonnezr

                @murgero said in Open ports in firewall:

                This might change in the future though as the project I believe was stated somewhere else that might move away from IPT.

                I think Cloudron intends to move to ufw which still uses iptables, see https://forum.cloudron.io/topic/1838/replace-iptables-with-nftables

                murgeroM Offline
                murgeroM Offline
                murgero
                App Dev
                wrote on last edited by
                #6

                @necrevistonnezr That is true, however the configuration steps are different than what has been described before when trying to work around this issue.

                --
                https://urgero.org
                ~ Professional Nerd. Freelance Programmer. ~

                1 Reply Last reply
                0
                Reply
                • Reply as topic
                Log in to reply
                • Oldest to Newest
                • Newest to Oldest
                • Most Votes


                  • Login

                  • Don't have an account? Register

                  • Login or register to search.
                  • First post
                    Last post
                  0
                  • Categories
                  • Recent
                  • Tags
                  • Popular
                  • Bookmarks
                  • Search