Dedicated Servers Firewall panel
-
- New to forums
- Posts: 7
- https://www.youtube.com/channel/UC40BgXanDqOYoVCYFDSTfHA
- Joined: Sun Jan 18, 2015 1:49 pm
Dedicated Servers Firewall panel
Is there any reason there's no firewall panel as there is with VDS's? Additionally is there any reason permanent filters can't be added by support being that there is no firewall panel?
Re: Dedicated Servers Firewall panel
The firewall panel on VDSes works with iptables on the dom0 iirc. A dedi isn't virtualized so there isn't a firewall to address. Instead you'd need to use the firewall built into the OS on the dedi.StonedPenguin wrote:Is there any reason there's no firewall panel as there is with VDS's?
Anything added by us for a dedi would have to be at machine-level or at router-level.StonedPenguin wrote:Additionally is there any reason permanent filters can't be added by support being that there is no firewall panel?
Since an Unmanaged dedi is configured by you, we don't have access to it and as such can't apply a firewall rule to it.
That leaves adding rules to the router. Adding unique rules to the router has a performance hit for everyone behind the router, so unless the rule you need would make sense to apply globally, we generally aren't going to be able to apply it.
Re: Dedicated Servers Firewall panel
On a managed dedicated server you can add firewall rules on each gameserver - although the rule would only apply to that gameserver, not the entire machine.
I've never really understood why we can't just apply a rule on the whole machine, rather than per-gameserver.
I've never really understood why we can't just apply a rule on the whole machine, rather than per-gameserver.
Re: Dedicated Servers Firewall panel
It was possible to block access to the machine, even to NFO, by adding certain firewall rules. It used to be possible, it was removed a while ago.Abdul wrote:On a managed dedicated server you can add firewall rules on each gameserver - although the rule would only apply to that gameserver, not the entire machine.
I've never really understood why we can't just apply a rule on the whole machine, rather than per-gameserver.
Not a NFO employee