The Junctionbox Firewall Change Request Form allow you to allow or deny specific types of Internet traffic to your managed server. If you are going to set up a web server, you need to use the firewall change form to tell us to allow web traffic to get to your server. Since we are not sure of your specific requirements, all services are turned off through the firewall until you ask us to turn them on.
Download the Firewall Form (MS Word Document)
Please fill out the description at the bottom of the form. That helps us help you make sure you have the firewall rules that you need.
Only administrative/emergency contacts can are authorized to change firewall rules. Please fill in the contact information. We may need to contact you for clarification and/or suggestions about the firewall changes you request.
Your initial rules request (to access you server for the first time) will typically be processed within 24 hours. Subsequent requests will will require two business day to process unless it is an emergency request.
Please indicate if this is an emergency! Also use the descriptive portion of the form (near the bottom) to indicate the nature of the emergency. Emergency requests may incur a fee.
| Rule | Rule to be Added, Modified or Deleted | Source IP Address (or ALL) | Destination Server Name or IP Address | Service or Port Number | Action (Accept or Drop Packets) |
Rule:
The first column is a number for administrative purposes. Do not worry about modifying this number.
Rule to be Added, Modified or Deleted:
This is where you specify if you adding removing or changing access to your server.
When you are starting out, you are usually Adding access to your server.
If you want to Change the IP or Service that you want access to on your server, specify that you are Modifying the rules.
Delete rules if you want to stop access to a particular service, or to a particular IP address.
Source IP Address:
This it the IP address users will be accessing your managed server From.
If you are setting rules for who can access your server with SSH or Microsoft's Terminal Server client, we recommend putting in Specific IP addresses, if possible.
If you are setting up a rule so that everyone on the Internet can access your server with HTTP (through the web) just put in ALL.
Destination Server
This is the name of your Managed Server. Use the Host Name from your Managed Server Account Information.
Service or Port Number:
This specifies the type of access you need for your server.
Most of the time it is enough to specify the type of access you need: SSH, terminal server, SQL, http (www), FTP, and SMTP (mail).
Some third party programs may require the firewall to accept packets on additional ports. In that case, put in the specific Port Number, for example TCP 1335, and specify whether it is TCP or UDP.
Action:
This is where you specify if you want us to Accept or Drop packets (traffic) for a particular port or service.
Since all packets are dropped by default, most of the time you will want to ask us Accept traffic.
Windows Server 2003 managed server customer with an ecommerce web site using SQL server:
Any detail you can provide will help ups help you make sure you have the firewall rules set that you need to effectively use your managed server. Take advantage of our internet experience, and read the examples above and attempt to clearly show what you are trying to achieve.
To use Microsoft's Terminal Services Advanced Client to connect to your server, remember to add a rule to open port 3389 for the specific IP addresses you will be accessing the server from. More information can be found in Microsoft's Terminal Server Advance Client FAQ.
SQL server uses TCP/IP port 1433 to communicate. Please remember to request SQL for ALL IPs you want to have access to the Database, that will tell our engineers to set port 1433 to accept SQL traffic for your Server.
Timbuktu uses a variety of ports to establish and maintain a connection.
All of our Windows NT managed server customers should requests all of the above ports open on their firewall request form. These ports are customizable within the Timbuktu program. If you do choose to customize the ports, please request those ports be open on a firewall request form, otherwise you may not be able to connect properly to your server. More information can be found Netopia's Technote: Firewalls and Timbuktu Pro.
Copyright © 2000 Junctionbox Online Services, Inc. All rights reserved.
info@junctionbox.net / support@junctionbox.net
Junctionbox and the Junctionbox logo are registered trademarks of Junctionbox Online Services. Certain other names, logos, designs, titles, words or phrases on this site may constitute trademarks, servicemarks or tradenames of Junctionbox or other entities which may be registered in certain jurisdictions.