What ports should be open on a Ubuntu LAMP server?

Posted February 14, 2014 14.1k views
If we're running Ubuntu Server with LAMP and Mail installed (that's all), what ports should be open for things to run smoothly. I know :80 is for Apache/HTTP, and one for MySql and SSH. What others should be kept open for the site and mail to work? We plan on keeping all others closed as most places will tell you. If there are others open is it something to be concerned? Also, what's the best way to find/list what ports are open and close them?

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

Submit an Answer
4 answers
You should close MySQL.

Keep SSH (22), HTTP (80), Mail (if using the server for SMTP) (25), and SSL (443) open.
To find the list of open ports, install nmap, then run "nmap localhost".

You can also try:
netstat -ntulp

It's a little dated but this is a solid, easy to follow guide to securing Ubuntu Server: