☁️
Product Docs
  • LayerStack Documentation
    • Getting Started
    • Data Center Selection
  • Products
    • Cloud Servers
      • Shared CPU
        • General Purpose
        • Arm-Based
        • High Storage
      • Dedicated CPU
        • Memory optimized
        • Compute-Optimized
    • Dedicated Cloud
      • Dedicated Physical Cores (vCPU)
      • Dedicated Hardware
    • Dedicated GPU
    • Load Balancer
    • Backup
  • Networking
    • Global Private Network
      • Virtual Private Cloud (VPC)
    • DDoS Protection
    • China Direct CN2 Route
    • Firewall
    • Reverse DNS
  • LayerPanel
    • Billing
    • Roles & Permissions
    • Developer Tools
      • API
      • Template
      • ISO
      • One-click Apps
  • Release Notes
  • Tutorials
  • Quickstart
    • Register Account
    • Create instance
    • Enable Dedicated GPU
    • Configure Load Balancers
    • How to Restore/ Delete backups
    • Enable Private Network
    • Enable Global Private Network
    • Set up new Virtual Private Cloud (VPC)
    • Rebuild existing Cloud Servers into Virtual Private Cloud (VPC)
    • Activate DDoS Attack Protection
    • Enable China Direct CN2 Route
    • Create a Firewall Template & Add Firewall Rules
    • Create a Reverse DNS record
    • Create Custom Template
    • Install the server with Custom Template / VM Image File
    • Delete a Custom Template / VM Image File
    • Mount/ Detach ISO
    • Upload Custom ISO
    • Deploy the server with One-click Apps
    • Deploy the server with Ubuntu 20 with LAMP/LEMP
    • Manage User
Powered by GitBook
On this page
  • Features
  • Protocols and Ports
  • Regional Availability
  • Role Permissions
  • Limits
  • Quick Start Guide
  • Related Tutorials
  1. Networking

Firewall

Features

LayerStack’s network-based and stateful firewall adds flexibility to firewall management across all of your cloud servers. Our firewall allows you to configure specific rules as a packet filter to screen both inbound and outbound traffic. You can use pre-defined rule sets to create firewall templates so you can manage your cloud servers in bulk and apply firewall rules as soon as you create a new cloud server.

Network Traffic Filter Rules

LayerStack's firewall drops all packets by default. You can use a Firewall Template to modify the rule sets and allow specific traffic to go into and out of your cloud servers through different ports within the ICMP, TCP and UDP protocols. You can allow traffic from specific sources or destination IP addresses.

Protocols and Ports

You can narrow the scope of a firewall rule by specifying protocols and/or ports. The specifications are as below:

SPECIFICATION
EXAMPLE
EXPLANATION

No protocol and port

ALL

ALL means no protocol is specified. The firewall rule applies to all protocols and their applicable ports.

Protocol

TCP: ALL

If you specify a protocol without any port information, the firewall rule applies to that protocol and all of its applicable ports.

Protocol and single port

TCP: 443

If you specify a protocol and a single port, the firewall rule only applies to that specific port of the protocol.

Protocol and port range

TCP: 20-22

If you specify a protocol and a port range, the firewall rule only applies to the specified range of ports for the protocol.

Source and Destination IP Address

You can target specific IP addresses or a range of IP addresses for inbound (ingress) and outbound (egress) rules. Source IP Address: The source IP is only applicable to inbound (ingress) rules. You can specify an IP address or a range of IP addresses as sources for packets. Destination IP Address: The destination IP is only applicable to outbound (egress) rules. Once set up, only traffic from the IP address or a range of IP addresses you specified is allowed to pass through.

Regional Availability

Firewall is available in all regions.

Role Permissions

ROLE
PERMISSIONS

Owner

Create Firewall Templates, Edit Firewall Rules, Clone Firewall Templates, Destroy Firewall Templates, Assign Cloud Servers to Firewall Templates, Remove Cloud Servers from Firewall Templates

Member

View Firewall Rules

Billing Member

View Firewall Rules

Billing Admin

Not Available

Limits

  • Firewall supports only ICMP, TCP, and UDP.

Quick Start Guide

Create a Firewall Template & Add Firewall Rules

Related Tutorials

LayerPanel 2 Setting

  • Basic Firewall Information and Rule Setting

Server Operating System Setting

  • How to install and configure CSF (Config Server Firewall) on Ubuntu 20.04 LTS

  • How to set up & configure Ubuntu Firewall (UFW) for Ubuntu 18

  • Firewall Configuration using Iptables with Advanced Security on Ubuntu 14.04

  • How to set up & configure firewall using FirewallD for CentOS 8

  • Setting up Windows Firewall on Windows Cloud Servers 2022

  • Setting up Windows Firewall on Windows Cloud Servers 2019

  • Setting up Windows Firewall on Windows Cloud Servers 2016

Troubleshooting / Testing

  • How to check if TCP / UDP port is open on Linux & Windows Cloud Servers

  • How to test Firewall Configuration with Nmap on Linux Cloud Servers

  • Installing Telnet Client on Linux and Windows Cloud Servers

  • How to troubleshoot SSH connectivity issues

PreviousChina Direct CN2 RouteNextReverse DNS

Last updated 2 years ago