You must open the following ports to run cPanel behind a firewall:
FTP
| Port | Service | Details |
|---|---|---|
| 20 | FTP | TCP inbound/outbound |
| 21 | FTP | TCP/UDP inbound/outbound |
Server administration and maintenance
| Port | Service | Details |
|---|---|---|
| 22 | SSH | TCP inbound |
| 37 | rdate | TCP outbound |
| Port | Service | Details |
|---|---|---|
| 25 | SMTP | TCP inbound/outbound |
| 26 | SMTP | TCP inbound/outbound |
| 110 | POP3 | TCP inbound |
| 143 | IMAP4 | TCP inbound |
| 465 | SMTP TLS/SSL | TCP/UDP inbound/outbound |
| 783 | SpamAssassin | TCP/UDP inbound |
| 993 | IMAP4 SSL | TCP inbound |
| 995 | POP3 SSL | TCP inbound |
| 2095 | Webmail | TCP inbound |
| 2096 | Webmail SSL | TCP inbound |
Essential services
| Port | Service | Details |
|---|---|---|
| 53 | DNS | TCP/UDP inbound/outbound (inbound is needed only if you run your own public DNS server) |
| 80 | HTTP | TCP inbound/outbound |
| 443 | HTTPS | TCP inbound |
| 3306 | MySQL | TCP (only if you need to connect remotely) |
WebDAV
| Port | Service | Details |
|---|---|---|
| 2077 | WebDAV | TCP/UDP inbound/outbound |
| 2078 | WebDAV SSL | TCP/UDP inbound/outbound |
cPanel
| Port | Service | Details |
|---|---|---|
| 2082 | cPanel | TCP inbound |
| 2083 | cPanel SSL | TCP inbound |
| 2086 | WHM | TCP inbound |
| 2087 | WHM SSL | TCP inbound |
| 2089 | cPanel license | TCP outbound |
Optional services
| Port | Service | Details |
|---|---|---|
| 43 | whois | TCP outbound |
| 113 | ident | TCP outbound |
| 873 | rsync | TCP/UDP outbound |
| 6666 | IRC | TCP inbound |
