Firewall

A firewall is a network-based service that blocks all unpermitted traffic, following a set of applied rules.

Firewall subscription active
You will receive email notifications for new publications on Firewall.
334 Results
  • Question

    How to open PORT : 443

    I have checked that the port 443 is closed and is not listed on my droplet. Here is the output when i run the command : root@ubuntu-1gb-blr1-01:/# netstat -ntlp | grep LISTEN tcp 0 0 127.0.0.1:3306 0.0.0.0:* LISTEN 4...
    Accepted Answer: Let's list the services that are running: sudo lsof -iTCP -sTCP:LISTEN -P Do you see Apache on port 443 on the list? If yes, then it might be a firewall issue. If no, then Apache isn't listening on port 443, which p...
    3 By atulroyal Apache Firewall Linux Commands Ubuntu 16.04
  • Question

    ssh time out when connecting from deployhq

    Deployments from DeployHQ were working without a problem until a week ago, now when I try to deploy I get the following response on deployHQ: 'Your server Production did not respond in a timely manner. Please ensure t...
    Accepted Answer: Hello, @ecell100 You've mentioned that you're using hostname in order to connect. May I ask if you've made any recent DNS changes? Can you try to connect using the IP address instead of the hostname to see if this wi...
    3 By ecell100 Firewall
  • Question

    How can i open up tcp port 53 for non DNS traffic?

    I can only seem to pass DNS traffic through on that port.
    Accepted Answer: Ignore me, it's the same for EC2 so must be something my end
    3 By seang1 DigitalOcean Accounts Firewall
  • Question

    How to fix connection issues from China

    Hi! I live in China, and I’m using Digital Ocean servers with Private Packets to set-up a VPN connection. The server was setup about 2 hours ago but it seems like I can't connect at all to it unless I am using another...
    Accepted Answer: Hi @chenfred98, There are two possibilities, first one is for Digital Ocean to block traffic from China or for your droplet to block traffic from China. I'll recommend trying to do a <^>traceroute<^> to your droplet a...
    1 By chenfred98 Firewall
  • Question

    How do I login to a droplet where I forgot to whitelist the SSH port

    Hi, So I forgot to add port 22 to the Firewall whitelist and now I can't login. Also, I can only login to my droplet using SSH key. Is there a way around this? Or should I destroy the droplet and create a new one with...
    Accepted Answer: Hello, You can use the web console through the DigitalOcean control panel. Here's a step by step instructions on how to regain access to your droplet: https://www.digitalocean.com/docs/droplets/resources/console/ Hope...
    1 By jeimanjeya Firewall DigitalOcean
  • Question

    Remote Mysql fail to connect - Tried everything I can think of.

    So I am going to walk you through everything I have done since I created this. Since this is a test before I run it for production. ssh in, change root password adduser (new user added) usermod -aG sudo (new user) ufw...
    Accepted Answer: I was unable to resolve this issue. Removing the droplet and closing ticket. Anyone that is curious all steeps I have taken are listed above. It is replicate-able by simply following those steeps.
    4 By quentinpidcock MySQL DigitalOcean Cloud Firewalls Firewall Databases DNS Ubuntu 18.04
  • Question

    Digital Ocean Firewall blocking sending Email

    Hi all, I'm running a WordPress site on Ubuntu 16.04 Server. Before using Digital Ocean Firewall feature. My WordPress site was sending outgoing emails without any problem but after enabling I'm getting following erro...
    Accepted Answer: Me too. I send support ticket about it and here DO answer: *Hello, Thank you for contacting DigitalOcean. Stopping spam is a constant fight, so we have implemented some restrictions on newer accounts. To qualify for t...
    10 By kumarpk Firewall Ubuntu 16.04
  • Question

    lfd Suspicious process running under user nobody for do-agent

    Hi! I have a VPS with CentOS 7 and CWP installed on it. CWP has the CSF firewall and the lfd send me email alerts a lot during a day because of the do-agent. I don't want to disable do-agent because it is for monitori...
    Accepted Answer: Yes, that's right. I found the solution here: http://wiki.centos-webpanel.com/csflfd-firewall-configuration 1) Login with SSH 2) Edit the file /etc/csf/csf.pignore (e.g. sudo nano /etc/csf/csf.pignore) 3) At the botto...
    2 By castorland Monitoring Firewall Security CentOS
  • Question

    Are there any k8s firewall best practices to be aware of?

    Just finished setting up a managed k8s cluster along with an ingress load balancer by following this article: https://www.digitalocean.com/community/tutorials/how-to-set-up-an-nginx-ingress-with-cert-manager-on-digita...
    Accepted Answer: Greetings! Great question. I want to stress that opinions vary on this, and that someone will certainly disagree with my answer. I do not believe firewalls are necessary, because I focus on it from a different angle. ...
    1 By ophirr Kubernetes Firewall Security
  • Question

    How to port forward

    how to open port 27015 27017.. pls help me.. i have try add it but when i check at Port Checker (https://www.yougetsignal.com/tools/open-ports/) but its doesnt open it..
    Accepted Answer: Hey friend, Great question! I want to dig a bit further on this. Typically when I see a question of this nature, the question is easily misunderstood. In those cases it isn't that the user wants the port open by itsel...
    1 By wearfault Firewall Ubuntu 16.04
  • Question

    UFW not blocking connections from other IPs

    I have setup UFW with: sudo ufw default allow outgoing sudo ufw default deny incoming sudo ufw allow ssh sudo ufw allow from 123.456.78.9 sudo ufw status: ``` To Action From 22 ...
    Accepted Answer: The issue was that I was using Docker which does not respect the rules of UFW.
    3 By david0be3aac31af75428ef645 Firewall Ubuntu 16.04
  • Question

    Error with firewalls api, shows `Server was unable to give you a response.`

    Most firewalls declared on Terraform .hcl file does not get created when using tarraform as in this docs https://www.terraform.io/docs/providers/do/r/firewall.html Shows error like this, ``` Error: Error applying plan...
    Accepted Answer: I believe terraform was trying to apply firewalls to droplet resources, and dependent resource was not available to handle it at the time. So some of the firewalls were applied randomly on each try. Related issue on ...
    2 By surajstha Terraform Firewall Ubuntu 18.04
  • Question

    Remote Connection to My Droplets

    Yesterday, i create a droplets with Ubuntu18.04 and do all things for my projects. But somehow, today, i got this email. "Hello, We have identified an issue on the physical machine hosting one or more of your Droplets...
    Accepted Answer: Hey friend! Can you ping your droplet? I'm betting not. If that is the case, a few of us on the support team put this together and it might help: https://www.digitalocean.com/community/questions/having-trouble-with-th...
    3 By mehmeteribol Firewall Ubuntu 18.04
  • Question

    Pointing A Subdomain From Route53 To CENTOS Droplet Displaying Error : This site can’t be reached The connection was reset

    Am trying to point a subdomain from Route53 to a Droplet I created. I keep getting, <^>The Site Cannot be reached the connection was reset error<^>. Below is my setup I have a virtual host setup on my centOS droplet ...
    Accepted Answer: Hi, You have a redirect to HTTPS in your port 80 vhost. But you're missing the SSL vhost (for port 443). So Apache isn't listening on that port at all. Hence the connection reset error: $ curl -I http://savings.corpre...
    2 By alofeoluwafemi DNS Networking Apache Firewall CentOS
  • Question

    SSH iptables rule

    Can someone please help me to understand why we should set ssh iptables INPUT rule destination port instead of source port? why SSH - iptables -A INPUT -p tcp -s tunnel1private_IP --dport 22 -i eth1 -j ACCEPT not i...
    Accepted Answer: INPUT is a chain that deals with incoming requests. So you have to shift your perspective to that of someone on the receiving end - the SSH server. I get an external packet from SRCIPA, SRCPORTA to connect to me at DS...
    1 By mefav Firewall Ubuntu
  • Question

    Disabling UFW in favour of DO Cloud Firewall ?

    What are the pros and cons of using the Digital Ocean cloud firewall over something like UFW ? Should both be used at the same time or will that be redundant ?
    Accepted Answer: UFW is a host-based tool, while DO's Cloud Firewall is a network-based one... Using DO's tool will not only provide reusability of rules (deploy inbound / outbound rules to many droplets - or even tags - at once) but ...
    3 By ramitmittalk Firewall Security Ubuntu 16.04
  • Question

    Connect to Windows10 Remote Desktop through OpenVPN server on droplet?

    How do I configure Norton 360 to allow me to connect to Windows10 Remote Desktop ? Background: I worked through the OpenVPN on Ubuntu 16.04 guide (https://www.digitalocean.com/community/tutorials/how-to-set-up-an-o...
    Accepted Answer: This (https://support.norton.com/sp/en/us/home/current/solutions/v6958602_ns_retail_en_us) might help.
    1 By Virgil Firewall Applications Networking VPN Ubuntu 16.04
  • Question

    Firewall & Apache Error

    While following DigitalOcean's "How To Install the Apache Web Server on Ubuntu 16.04" guide: Step 1: Install Apache -- success :) sudo apt-get update sudo apt-get install apache2 Step 2: Adjust the Firewall -- failu...
    Accepted Answer: Jjust allow port 80 and 443
    2 By matthew1b9a21e7404c2ac7168 Apache Firewall Ubuntu 16.04
  • Question

    Remote access to MySQL not working after following a ton of tutorials. What am I missing?

    I've changed bind-address to 0.0.0.0 and today changed it to the IP of my server which still doesn't work. The MySQL user I'm trying to connect with has host set as % and I've of course restarted MySQL a bunch of time...
    Accepted Answer: MySQL is a plaintext protocol, do not expose it to the internet and use it over a SSH tunnel instead.
    1 By Akandesh MySQL Firewall Ubuntu 16.04
  • Question

    I did "sudo ufw app list", why is my list so huge?

    deno@dsls-debian-512mb-ams3-01:~$ sudo ufw app list Available applications: AIM Bonjour CIFS DNS Deluge IMAP IMAPS IPP KTorrent Kerberos Admin Kerberos Full Kerberos KDC Kerberos Password ...
    Accepted Answer: These applications are simply profiles that UFW knows about and can use. It doesn't mean that it has active rules for all of them. The profiles should be stored in /etc/ufw/applications.d, but I wouldn't recommend del...
    1 By deno Firewall Ubuntu