Hetzner - DokuWiki




To ensure maximum security, all non-standard ports are blocked by our firewall. In special cases, it may be necessary to open non-standard ports for locally operated systems or ports from external services.

Note: The function of these firewall rules is not to detect attacks. This feature should only contain rules for network communication.

The firewall supports both IPv4 and IPv6.

How do I activate individual firewall rules?

If you define a firewall rule, in konsoleH under "Services;Settings;Firewall", firewall port sharing will be enabled.

Activation may take up to 1 hour.

Firewall rules

Since each firewall rule slows down the restart process of a server, we have placed a limit on the number of possible firewall rules. It is also not possible to open port ranges.


  • Release type: You can choose between "The service is located on this server" (Incomming) and "The service is located on an external server" (Outgoing).
  • Protocol: TCP or UDP. TCP is usally used.
  • IP: IPv4/IPv6 address or IP netmask
  • Port: Only unprivileged ports are recommended (between 1024 and 65535).

If you need firewall rules for ports below 1024, please contact our support team.


In the overview, you can see all active firewall rules and the ones you are currently using. You can edit or remove individual firewall rules here.

Advanced View

In Advanced View, you can easily insert and update your complete firewall configuration with one click. Note the release type. If the service is located on this server, please use "IN". If you want to connect to an external server, please use "OUT".

Add rule

In this menu item, you can add new firewall rules.

Drop firewall

This deletes your existing firewall rules.

© 2019. Hetzner Online GmbH. Alle Rechte vorbehalten.