I am looking to install CSF. (kinda new to this)
Just wanted to verify a couple things.
Does fail2ban get disabled when i install csf?
Do I need to manually add the ports for rtorrent? iirc, I believe I setup rtorrent’s port range and scgi port
Also, I changed the SSH port that I use away from the default port QB uses (and a couple other SSH changes, but I don’t think should be affected outside the port change?). Is the only file I need to update is /etc/QuickBox/setup/templates/csf.conf.template and update the 9 instances of the SSH port?
Is there anything else I need to update?
Want to be sure so I don’t get locked out of my box or anything like that.
Also. Is there a list of what each port refers to? I know some of them as they are common ports, but for the others, not sure which port belongs to what (usually from port 3000+)
# Allow incoming TCP ports
TCP_IN = "22,25,53,80,110,143,443,465,587,993,995,3000,3443,4040,4242,4747,5757,5050,8000,8081,8181,8384,8888,8989,9117,20000:61000,65080"
# Allow outgoing TCP ports
TCP_OUT = "22,25,53,80,110,113,443,587,993,995,3000,3443,4040,4242,4747,5757,5050,8000,8081,8181,8384,8888,8989,9117,20000:61000,65080"
# Allow incoming UDP ports
UDP_IN = "22,53,3000,3443,4040,4242,4747,5757,5050,8000,8081,8181,8384,8888,8989,9117,20000:61000,65080"
# Allow outgoing UDP ports
# To allow outgoing traceroute add 33434:33523 to this list
UDP_OUT = "22,53,113,123,3000,3443,4040,4242,4747,5757,5050,8000,8081,8181,8384,8888,8989,9117,20000:61000,65080"
I know Ports 3443, 4747, 5757 (CSF WebUI, SSH and FTP Ports). I assume 20000-61000 is to open up ports for rtorrent? (I can limit that down to a specific rtorrent port?)
But not sure on the rest of the ports and if I can shut those down too if I am not using them.