Browse Categories Subscribe To Our Web Hosting Feeds
Backup & Restore
Billing & MyAccount FAQs
Control Panels
Databases
Dedicated Servers
DNS and Domain Registration
Email
Glossary
Network
Pre-sales FAQ
Publishing Your Site
Reseller Tips
Search Engine Optimization (SEO)
Security Topics
SSL and HTTPS
Virtual Private Servers (VPS)
Website Design, Scripting and Development
Website Errors

Quick Links
» Submit Technical Support Ticket
» Submit Sales & Billing Ticket
» Manage My Hosting Account
» Pay My Hosting Bill
» Manage Domain Registration

 
WEB HOSTING Network Access Policy
Network Access Policy Article ID:97

3Essentials Network Access Policy defines rules governing what type of network communications is allowed to and from 3Essentials network.  These vary based on the type of hosting (dedicated servers, shared servers) and are defined as follows:

  • Shared hosting plans
    • Inbound
      • Standard hosting traffic is allowed:
        • TCP 80 - HTTP
        • TCP 443 - HTTPS
        • TCP 25 - SMTP
        • TCP 110 - POP
        • TCP/UDP 53 - DNS
        • TCP 20, 21 - FTP
        • SSH - 22 (Windows only, SSH allowed for Secure Enterprise Manager and Secure MySQL administration only, not for SSH/telnet/shell access).
    • Outbound
      • Linux Shared hosting:
        • no outbound traffic allowed by default.  http and https traffic to commercial services like UPS, FedEx, PayPal, etc. will be allowed on a per destination basis.  As such, if you need outbound connection to a specific destination, submit a support request for an exception to be reviewed by our Network & Security team.
      • Windows Shared hosting:
        • TCP 80, 443 (http and https) are allowed outbound to all Internet destinations. 
    • Custom requests (inbound or outbound)
      • Custom requests are not allowed on Shared Hosting Plans.  For custom network communication requirements, please evaluate our dedicated server hosting plan options.
  • Dedicated Managed server plans
    • Dedicated Managed server plans are treated 100% identically as shared hosting plans with respect to the Network Access Policy, please refer to shared hosting plans section of this document.
  • Dedicated Un-Managed server plans 
    • The network access policy has changed as 3Essentials has expanded to multiple datacenters; as such, the policy varies based on the location of your datacenter.
      • Raleigh
        • Firewall 
          • Dedicated Un-Managed servers in our Raleigh, NC datacenter, servers are behind a shared, redundant, enterprise managed firewall solution which allows the following.
        • Inbound
          • Standard hosting traffic is allowed:
            • TCP 80 - HTTP
            • TCP 443 - HTTPS
            • TCP 25 - SMTP
            • TCP 110 - POP
            • TCP/UDP 53 - DNS
            • TCP 20, 21 - FTP
            • SSH - 22 (SSH allowed for Secure Enterprise Manager and Secure MySQL administration only, not for SSH/telnet/shell access).
          • RDP: TCP 3389 is allowed for customer access to their Windows servers via RDP.
          • SSH: TCP 22 is allowed for customer access to the Linux servers via SSH.
        • Outbound
          • TCP 80, 443 (http and https) are allowed outbound to all Internet destinations
        • Custom requests (inbound or outbound)
            • We allow one custom outbound rule and one custom inbound rule.  
            • A rule is limited to a single IP or contiguous subnet. 
            • The inbound rule is limited to a max of 15 TCP ports.
            • The outbound rule is limited to a max of 15 TCP ports, or ANY TCP (which means "all TCP traffic").
            • If additional needed, customers have the option to migrate to Dallas datacenter, which provides greater flexibility for custom communications requirements.  
      • Dallas
        • Firewall 
          • Dedicated Un-Managed servers in our Dallas, TX datacenter are not behind a redundant, enterprise, managed firewall solution; instead, all traffic is allowed at a network level.
          • By default, all u-managed dedicated servers include host-based firewall solutions when we turn the server over to our customer:
            • Windows:
              • Windows Firewall is enabled, and configured to allow RDP and ICMP-PING from any Internet location, and SNMP from 3Essentials network to facilitate 3Essentials system monitoring monitoring.
            • Linux:
              • IPtables is enabled and configured to allow SSH access from any Internet location.  
        • Additional options:
          • Shared Managed Firewall Services
            • 3Essentials will soon be making a shared managed firewall solution available to it's unmanaged dedicated customers.  Let us manage your firewall solution, including custom rulesets to meet your unique communication requirements... all at affordable pricing by sharing the managed firewall infrastructure with other unmanaged dedicated customers.
          • Dedicated Managed Firewall Services
            • 3Essentials can custom build a dedicated, redundant, managed firewall solution to meet your needs.  Please contact the sales department with your requirements and questions for a quote.
Downloads associated with this article:
  No downloads associated with this article
Back to Search or Browse