Hi. I’m reaching the point where I’m close to deploying some services on a VPS, and wanted to run through my usual port blocking security regime. But I’m getting conflicting info from DH about what can or can’t be done.
Their docs and chat personnel are simultaneously claiming that:
- They don’t block any ports by default
- You should install/run a firewall if you want port protection
- The normal Debian/Linux firewalls based on iptables won’t work due to the virtualization system
- Use .htaccess (Pretty lame suggestion – only relates to httpd, and bangs on the httpd server for every evil packet.)
Can someone please clarify for me what’s actually going on? In particular, both saying “go ahead and install a firewall” and “iptables won’t work” makes no sense at all. But a totally open system is not acceptable.