22 SSH
TCP- Direction
- Source
- All
- From Cloudtov edge only
Firewall & ports
Control which ports are open, and from where.
Global firewall mode
Firewall: ON
Disabling it greys out all other controls.
Mode
POST /api/security/firewall/mode with mode set to relax, medium, or strict.
Open ports
80 HTTP
TCP- Direction
- Source
- All
- From Cloudtov edge only
443 HTTPS
TCP- Direction
- Source
- All
- From Cloudtov edge only
3306 MySQL
TCP- Direction
- Source
- All
- From Cloudtov edge only
5432 PostgreSQL
TCP- Direction
- Source
- All
- From Cloudtov edge only
Changes call POST /api/security/firewall/ports with port, protocol, direction, source and proxyOnly (edge-only).
Advanced firewall rules
Priority 1
- Action
- Allow
- Protocol
- TCP
- Direction
- Inbound
- Source
- 203.0.113.0/24
- Destination
- Any
- Port
- 443
- Description
- Allow trusted office access
Priority 2
- Action
- Deny
- Protocol
- TCP
- Direction
- Inbound
- Source
- 185.220.101.0/24
- Destination
- Any
- Port
- Any
- Description
- Block Tor abuse range
Priority 3
- Action
- Deny
- Protocol
- ICMP
- Direction
- Inbound
- Source
- 0.0.0.0/0
- Destination
- Any
- Port
- Any
- Description
- Drop ICMP floods
New rules call POST /api/security/firewall/rules with a structured JSON object.