UniqueSoft/openpanel
2
0
Fork 0
mirror of https://github.com/stefanpejcic/openpanel synced 2025-06-26 18:28:26 +00:00
Code Issues Actions 2 Packages Projects Releases Wiki Activity

Update INSTALL.sh

Browse Source
This commit is contained in:
Stefan Pejcic 2024-11-08 17:28:19 +01:00 committed by GitHub
parent e18b0f7526
commit 11969c4928
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 22 additions and 25 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

47
INSTALL.sh
View File

@ -969,27 +969,24 @@ setup_firewall_service() {
install_csf install_csf
edit_csf_conf edit_csf_conf
open_tcpout_csf 3306 #mysql tcp_out only open_tcpout_csf 3306 # mysql tcp_out only
open_tcpout_csf 465 #for emails open_tcpout_csf 465 # for emails
open_port_csf 22 #ssh open_port_csf 22 # ssh
open_port_csf 53 #dns open_port_csf 53 # dns
open_port_csf 80 #http open_port_csf 80 # http
open_port_csf 443 #https open_port_csf 443 # https
open_port_csf 2083 #user open_port_csf 2083 # user
open_port_csf 2087 #admin open_port_csf 2087 # admin
open_port_csf $(extract_port_from_file "/etc/ssh/sshd_config" "Port") #ssh open_port_csf $(extract_port_from_file "/etc/ssh/sshd_config" "Port") # ssh
open_port_csf 32768:60999 #docker open_port_csf 32768:60999 # docker
open_port_csf 21 # ftp
open_port_csf 21 #ftp open_port_csf 21000:21010 # passive ftp
open_port_csf 21000:21010 #passive ftp
set_csf_email_address set_csf_email_address
csf -r > /dev/null 2>&1 csf -r > /dev/null 2>&1
echo "Restarting CSF service" echo "Restarting CSF service"
systemctl restart docker # not sure why systemctl restart docker # not sure why
systemctl enable csf systemctl enable csf
service csf restart # also restarts docker at csfpost.sh service csf restart # also restarts docker at csfpost.sh
if command -v csf > /dev/null 2>&1; then if command -v csf > /dev/null 2>&1; then
echo -e "[${GREEN} OK ${RESET}] ConfigServer Firewall is installed and configured." echo -e "[${GREEN} OK ${RESET}] ConfigServer Firewall is installed and configured."
@ -1028,14 +1025,14 @@ setup_firewall_service() {
# block all docker ports so we can manually open only what is needed # block all docker ports so we can manually open only what is needed
debug_log ufw-docker install debug_log ufw-docker install
debug_log ufw allow 80/tcp #http debug_log ufw allow 80/tcp # http
debug_log ufw allow 53 #dns debug_log ufw allow 53 # dns
debug_log ufw allow 443/tcp # https debug_log ufw allow 443/tcp # https
debug_log ufw allow 465/tcp # email debug_log ufw allow 465/tcp # email
debug_log ufw allow 2083/tcp #openpanel debug_log ufw allow 2083/tcp # openpanel
debug_log ufw allow 2087/tcp #openadmin debug_log ufw allow 2087/tcp # openadmin
debug_log ufw allow 21/tcp #ftp debug_log ufw allow 21/tcp # ftp
debug_log ufw allow 21000:21010/tcp #passive ftp debug_log ufw allow 21000:21010/tcp # passive ftp
debug_log "yes | ufw enable" debug_log "yes | ufw enable"
if [ "$NO_SSH" = false ]; then if [ "$NO_SSH" = false ]; then