Plone 5.2 CMS Set up a firewall 04

Plone 5.2 Set up a firewall
You must set up a firewall. But, you may be handling that outside the system
If you want to use a software firewall on the machine, you may use ufw to simplify rule
sudo apt-get install ufw
sudo ufw limit 22/tcp
sudo ufw allow 80/tcp
sudo ufw allow 443/tcp

sudo ufw limit 8080/tcp
sudo ufw enable

This blocks everything but SSH and HTTP(S).
You may be wondering, how do you do Management Interface administration? SSH port
forwarding will allow you to build a temporary encrypted tunnel from your workstation to
the server.
Execute on your workstation the command:
ssh -L:8080:localhost:8080