UsingWW: firewall on webwork server

Installation

firewall on webwork server

◄ Backups and upgrades
Apache won't start ►

This forum has a limit to the number of forum postings you can make in a given time period - this is currently set at 5 posting(s) in 1 day

I am managing a ww installation on ubuntu and I would like to firm up the firewall.

I have found a short iptables script

https://gist.github.com/aubreyja/4534512

after trolling the forums here. I would like to make a set of ufw rules, using that iptables script as a template.

I have a few questions:

1. avahi-daemon seems to be listening on a couple ports (e.g. 0.0.0.0:5353).
Am I correct that the apache webserver is handing off connections to this daemon, so there is no need to open these ports?

2. The script's default outgoing policy is drop. The ww outbound email is handed off to the university email server. Do I need to open the port explicitly for that outbound email? The script does not do this.

Leo

◄ Backups and upgrades
Apache won't start ►