Close port 3000?

mmorin · January 15, 2019, 10:10am

We have switched our Ubuntu server to use caddy and set up SSL.
Can we close/disable port 3000 to stop clients from using non https connections? how?

mmorin · January 20, 2019, 1:55pm

Hello? anyone there ?

lucia.guevgeozian · February 1, 2019, 2:12am

Hello, currently not with the snap, you can’t bind rocket.chat only to loopback iface, port 3000 is used by Caddy to proxy requests to rocket.chat, you could add a firewall rule to prevent clients to access the port but without blocking traffic for loopback iface, so Caddy can still send/receive traffic to rocket.chat.

mmorin · February 1, 2019, 3:24pm

ok I thought exactly that.

thanks for the info!

thomas32 · March 19, 2023, 11:27am

To do this, you will need to use a firewall tool such as iptables or ufw to create a rule that blocks incoming traffic to port 3000 from external sources. The exact command will depend on your specific firewall tool and configuration, but a basic example rule might look like this:

iptables -A INPUT -p tcp --dport 3000 ! -i lo -j DROP
This rule will drop any incoming TCP traffic to port 3000 that is not coming from the loopback interface. This should prevent external clients from accessing Rocket.Chat while still allowing Caddy to communicate with it.

Topic		Replies	Views
Disable http://<your-domain.com>:3000 url access Ubuntu 22.04 Snaps 6.x Community Support	1	300	November 4, 2023
Question on caddy install Community Support	9	2190	June 11, 2021
Adding SSL support / Tutorial for this Community Support	2	900	April 21, 2023
Changing default port Community Support	5	18326	February 26, 2020
Rocket.Chat stopped working over HTTPS Community Support	3	2439	December 25, 2018

Join our Community Open Call tomorrow where we'll share more details regarding recent changes and answer questions about updating your workspace to the latest Rocket.Chat

Close port 3000?

Related Topics