This feature allows to block specific ports for TCP/UDP connection. It is also possible to add specific IPs 

or subnet as a whitelisted so that the rule for the port will not work. 



NOTE : Imunify360 can block particular ports using this feature, yet it doesn't support a paradigm to 


             "block everything but the selected ports". That could be achieved via legacy linux iptables.



Click Firewall and choose Blocked Ports.


NOTE: If CSF integration enabled, then Blocked Ports will be disabled. Imunify360 imports 

            Closed ports and their whitelisted IPs from CSF.

Use filters to show the exact list of the IPs:

  • IP – allows filtering the list by IP. Enter an IP or a part of it into the input field.
  • Country – allows filtering the list by country origin. Enter a country name into the input field with autocomplete. Imunify360 will show the list of IPs of the chosen country.
  • Comments – allows filtering the list by comments. Enter a comment into the input field.
  • Use Items per page at the page bottom right to set the number of the incidents to be shown on the page.

The following actions are available for the ports:

#Add a port to the list of blocked ports


On the Firewall page choose Blocked ports and click Add. In the pop-up specify the following:

  • Port – the number of the port to be added to the list of blocked ports.
  • TCP/UDP – tick the checkboxes of connection types for the port that should be blocked.
  • Enter comment (optional) – a text to be added as a note for the port.
  • Whitelisted IPs – add IPs separated by comma to the White List. They will be able to use the port.

Click Add Port to proceed or Cancel to close the pop-up.


#

Edit ports in the blocked ports list


To add an IP or a subnet to the White List for the port, click +IP and in the Add IP/Subnet pop-up specify the following:

  • Enter IP – IP or subnet that should be added to the whitelist
  • Enter description – a description to be added as a note to the IP or subnet.


#

Add a comment


In the proper port row click in the Note column, type a comment and click .

To remove a comment, click and remove the text. Then click .

#Delete permanently


To delete a port or separate IP/subnet, click Bin icon in the row of the element.