ANS Documentation

Improve This Doc
  • Cloud
  • Domains and DNS management
  • Backup and High Availability
  • eCommerce Stacks
  • Security
  • Email
  • Monitoring and usage management
  • Networking
    • Content Delivery Network
    • Colocation
    • Firewalls
      • Accessing your firewall configuration through MyUKFast
      • Enabling ICMP traffic to UKFast servers
      • Managing ports on your shared firewall
      • How to secure your shared firewall
      • Managing ports your dedicated firewall
      • The Access List - Single VLAN
      • The Access List - Multi VLAN
      • How to secure your dedicated firewall
      • Scheduling a dedicated firewall reboot
      • UKFast-supported VPNs
      • VPN Dashboard
      • Remote Access VPN Dashboard
      • Site To Site VPN Dashboard
      • User Administration For AnyConnect VPN
      • Two factor authentication (2FA) VPNs
      • VPN capacity on UKFast dedicated firewalls
    • Classic Load Balancers
    • Load Balancers
    • Policy
    • How to set up a Multi-Protocol VPN Server using SoftEther
  • Operating systems
  • Webcelerator
  • MyUKFast
  • Home >
  • Cloud >
  • eCloud Public >
  • Firewalls >
  • Managing ports on your shared firewall

Managing ports on your shared firewall¶

We open a default set of ports for each server we deploy, and that works for most of our customers. However every client is different and there are many cases where you may wish open more than the default set of ports on your shared firewall. Examples might be to open ports to allow passive-mode FTP connections, or if want to allow remote access to a MySQL server for development.

The port configuration screen for our shared firewall looks like this:

portlist

As you can see, it’s fairly simple. By default, all ports are blocked, so only the ports you can see listed there are open. To add more, just hit the “Add port” links. You can add a single port, or a port range. You can also add a note to say exactly why that port is open to help you in future maintenance.

Add port on shared FW

The firewall looks at traffic in both directions. “Incoming” refers to connections from the internet to your server. “Outgoing” means connections from your server to the internet. This means you can control traffic in either direction independently. For example, you might want to allow SSH outbound from your server, but not allow SSH in from the internet.

There are also 2 sections. TCP (Transmission Control Protocol) and UDP (User Datagram Protocol). If you are unsure which you use for your application, you are probably using TCP! The vast majority of common tasks use TCP so unless you are hosting a specialist service like VOIP, streaming hosting your own DNS, you’re probably using TCP. The one common UDP port we open is 123 which is for Network Time Protocol (NTP).

Next Article > How to secure your shared firewall

  • Useful Links
  • SMB
  • Enterprise
  • Channel
  • Public Sector
  • ANS Data Centres
  • About ANS
  • Careers
  • Blog
  • Get in touch
  •  
  • Sales 0800 458 4545
  • Support 0800 230 0032
  • Get in touch

© ANS Group Limited | Terms and Conditions | Corporate Guidance | Sitemap
ANS Group Limited, registered in England and Wales, company registration number 03176761, registered office 1 Archway, Birley Fields, Manchester M15 5QJ