I installed APF (Advanced Policy Firewall) to help manage my iptables as I don’t have a lot of time to mess with them on my own. I used it along with BFD and Atomic Secured Linux in my earlier Plesk machine (I might add that webmin is indeed a better package).

In configuring the APF script, one must identify those TCP/UDP ports that should remain open not to upset webmin. I ran nmap to get a peek at the default open ports which was useful but I get the feeling that things are more complicated than that. There are not a lot of resources that I could find on the web listing the ports webmin requires to be opened.

I did open the following TCP ports based on nmap and the little I could glean from the web.

From conf.apf:

IG_TCP_CPORTS="22,25,53,80,110,143,443,465,587,993,3306,10000,20000,30000_35000"

Common inbound (ingress) UDP ports

IG_UDP_CPORTS="53,10000,20000"

*** both inbound and outbound ports are the same config.<br><br>Post edited by: mdtiberi, at: 2009/02/24 14:39

Those ports look like a good start, though you may also want to open up TCP port 21 if you planned on offering FTP on your server, and port 995 if you want to have POP3S.
-Eric

Thanks Eric

Webmin RPC also uses several ports above 10000 (depending on number of connections, etc.). I think up to about 10010. If you don’t have any other Webmin hosts, then this won’t be an issue.