We strongly recommend that servers that run the CentOS 7, CloudLinux 7, and RHEL 7 operating systems use the firewalld daemon instead of iptables programs or legacy services in those operating systems.įor example, to block traffic for a single IPv4 address, run the following command, where 198.51.100.1 is the IPv4 address that you wish to block: firewall-cmd -add-rich-rule='rule family="ipv4" source address="198.51.100.1" drop' -permanent CentOS 7, CloudLinux 7, and RHEL 7 firewall management To block traffic for a single IPv6 address, run the following command, where 2001:0db8:0:0:1:0:0:1 is the IPv6 address that you wish to block: nft add rule ip6 filter INPUT ip6 saddr dropįor more information about the nftables framework and the nft tool, read Red Hat’s Getting Started with nftables documentation. You will find the nftables ruleset for your server in the /etc/sysconfig/nf file.įor example, to block traffic for a single IPv4 address, run the following command, where 198.51.100.1 is the IPv4 address that you wish to block: nft add rule filter INPUT ip saddr 198.51.100.1 drop You can configure nftables with the nft command line tool. Use the nftables framework instead of iptables programs or legacy services in those operating systems. We strongly recommend that you use the nftables framework for your AlmaLinux OS 8 or CloudLinux 8 server’s firewall. For more information, read Red Hat’s When to use firewalld, nftables, or iptables documentation.ĪlmaLinux OS 8 and CloudLinux 8 firewall management For servers that run the CentOS 7, CloudLinux 7, or RHEL 7 operating systems, we recommend that you use the firewalld utility. We recommend the nftables utility for servers that run the AlmaLinux OS 8 or CloudLinux 8 operating systems. does not support this version of RHEL, this change affects all cPanel-supported operating systems.
The license callback mechanism tries the following ports until one succeeds: Service It only alerts the server that a change as been made to the license. It cannot make any changes to the server. The License Callback Mechanism immediately updates a server after the license changes in either Manage2 or the cPanel Store.
Servers running the Ubuntu® operating system use this port to download apt repository GPG keys.įor more information, read Apache’s Pyzor and NetTestFirewallIssues documentation. MySQL uses this port for remote database connections.įor more information, read the Apache® DCC and NetTestFirewallIssues documentation.
For more information, read our How to Set Up iOS Push Notifications documentation. This will redirect users to secure ports with the /cpanel, /whm, and /webmail aliases.ĬPanel & WHM only uses this port for the Apple® Push Notification Service (APNs). Formerly known as “Always redirect to SSL/TLS” setting to On in WHM’s Tweak Settings interface ( WHM > Home > Server Configuration > Tweak Settings). To disable insecure logins via this port and only allow SSL logins, set the Choose the closest matched domain for which that the system has a valid certificate when redirecting from non-SSL to SSL URLs. This port serves the HTTP needs of services on the server.
The Show Available Modules setting in cPanel’s Perl Modules interface ( cPanel > Home > Software > Perl Modules) uses this port to improve the speed with which it appears. For more information on how to access cPanel & WHM services, read our How to Log in to Your Server or Account documentation.ĬPanel & WHM uses the following ports: Port