ASL Firewall & E-Commerce Applications
Posted: Fri Apr 24, 2015 8:06 am
Hey guys hope someone can help me out, i have a couple clients that are moving over to PrestoShop for their e-commerce and having some strange things happening and i think it is ASL firewall related. Seems that prestoshops installer and the admin panel do a lot of outbound talking and downloading depending on the module back to prestoshop.
Because of this when trying to install some things are not getting updated and also once the installer is complete the frontend is real fast but the admin is wicked slow due to it waiting to timeout on certain functions when it is trying to get out.
How and what is the best way to allow 80 and 443 traffic outbound so that they will function as designed? as a side note i also have this issue with SugareCRM and the updater and Plesk and the license key updates so usually have to kill the asl-firewall when i want to run the updaters.
I just want to allow thinks to do what they are supposed to do but also not cause a security issue or risk if i can keep it limited. I did just try adding 80 & 443 to the Outbound TCP services setting in the asl config but not sure if this is the best way and not positive if these are even what ports yet they are trying to get out on.
thanks in advance.
Because of this when trying to install some things are not getting updated and also once the installer is complete the frontend is real fast but the admin is wicked slow due to it waiting to timeout on certain functions when it is trying to get out.
How and what is the best way to allow 80 and 443 traffic outbound so that they will function as designed? as a side note i also have this issue with SugareCRM and the updater and Plesk and the license key updates so usually have to kill the asl-firewall when i want to run the updaters.
I just want to allow thinks to do what they are supposed to do but also not cause a security issue or risk if i can keep it limited. I did just try adding 80 & 443 to the Outbound TCP services setting in the asl config but not sure if this is the best way and not positive if these are even what ports yet they are trying to get out on.
thanks in advance.