Close port 3000?

We have switched our Ubuntu server to use caddy and set up SSL.
Can we close/disable port 3000 to stop clients from using non https connections? how?

Hello? anyone there ?

Hello, currently not with the snap, you can’t bind only to loopback iface, port 3000 is used by Caddy to proxy requests to, you could add a firewall rule to prevent clients to access the port but without blocking traffic for loopback iface, so Caddy can still send/receive traffic to

ok I thought exactly that.

thanks for the info!

To do this, you will need to use a firewall tool such as iptables or ufw to create a rule that blocks incoming traffic to port 3000 from external sources. The exact command will depend on your specific firewall tool and configuration, but a basic example rule might look like this:

iptables -A INPUT -p tcp --dport 3000 ! -i lo -j DROP
This rule will drop any incoming TCP traffic to port 3000 that is not coming from the loopback interface. This should prevent external clients from accessing Rocket.Chat while still allowing Caddy to communicate with it.