Firewall Options - VPS/Dedicated

From Hostek.com Wiki
Revision as of 19:05, 2 July 2012 by Jakeh (Talk | contribs)

Jump to: navigation, search

Firewall Options

There are primarily two types of Firewall Options. Hardware and Software. For our hardware option, we operate multiple TopLayer IPS's which do an excellent job at mitigation. It's a stateless connection type system that traffic will pass through. In our experience it's very effective to prevent specific traffic that has no business hitting your servers.

In our VPS/Dedicated Firewall group, we do only have certain ports open that are the common ones for serving web pages and email. If you need a non-standard port to be open, you will want us to move your VPS from behind our firewall port blocking group so that you can then enable Windows Firewall and manage the firewall via the Windows Software firewall (Windows VPSs) or cPanel ConfigServer Firewall (Linux VPSs).

Windows Firewall

Opening a Port in Windows Firewall

To open a port in your VPS's Windows Firewall, you'll need to perform the following steps:

  1. Click the Start button, open the Administrative Tools menu, then click Windows Firewall with Advanced Security.
    Openfirewallport-step01.png
  2. Click the Inbound Rules section, then click the New Rule link at the right side of the window.
    Openfirewallport-step02.png
  3. Select Port and click Next.
    Openfirewallport-step03.png
  4. Enter the port you wish to open in the Specific local ports section. For example, if you wish to open MySQL you'd enter 3306. You can also open multiple ports at a time by separating the ports with commas.
    Openfirewallport-step04.png
  5. Make sure Allow the connection is selected and click Next.
    Openfirewallport-step05.png
  6. Make sure Domain, Private, and Public are selected and click Next.
    Openfirewallport-step06.png
  7. Now you just need to enter a name for the rule and click Finish
    Openfirewallport-step07.png

Restricting Access to a Port

  1. First, open Windows Firewall with Advanced Security by clicking the Start button, opening the Administrative Tools menu, then clicking Windows Firewall with Advanced Security.
    Openfirewallport-step01.png
  2. Right-click on the rule you wish to edit, and click Properties
  3. Click the Scope tab in the pop-up that appears.
    Restrictfirewallport-step03.png
  4. Under Remote IP Addresses select These IP addresses then click Add.
  5. In the popup that appears, you will choose what IP will have access to the port defined in your rule. For example, if you wish to restrict access to your local computer, you'd enter your computer's IP address in the This IP address or subnet section. FYI, to find your computer's IP address, you can use our IP finder.
    Restrictfirewallport-step05.png
  6. After entering your IP, click OK in the IP Address window. Then click OK in the rule properties window, and you're done.