Outbound ports open for container/PHP

XN-Matt

Can someone at Enhance advise what ports are open for a container for outbound traffic?

I believe port 25 is intercepted and routed to the respective mail server but would like to know if any other are?

Adam

Enhance doesn't block or intercept any outbound ports (although we have an open feature request for this).

There is a drop-in sendmail replacement which allows PHP mail() and direct calls to /usr/bin/sendmail to send through the assigned mail server for the website.

XN-Matt

Interesting.

In that case, we really need an option to allow mail connections to say the mail server only and block any other port 25 traffic.

Spammers abuse direct to IP connections which means tracking that down can be near impossible.

cPanel allow you to block/re-route all port 25 comms to the local server where everything is logged.

That may be wise to have as an on/off option.

Adam

xyzulu

You can but it's difficult to do manually, the best way to seems to be to exclude port 25 from the outbound NAT.

XN-Matt In that case, we really need an option to allow mail connections to say the mail server only and block any other port 25 traffic.

Coming soon, along with the rest of the firewall management UI.

xyzulu

You can use ufw to block outbound traffic