I've done a stealth scan and it turns out that I had 2 "loose" ports;

Web port 80
IDENT port 113

Where do I "hide" these ports?

PS Every other port was stealthed.

Are you running a web server or other services? If not, start by turning them off at Main Menu > System Settings > Server Settings > Services.

There is a very basic firewall configuration at Main Menu > System Settings > Security Level. Set the level to high.

note that IDENT/tcp113 is really only used by IRC clients these days. Many IRC servers require you be running IDENT to connect, and many IRC clients include their own IDENT servers for this purpose...
So careful blocking that port if you are using IRC. Perhaps allow only the IRC servers to which you are connecting talk to IDENT. Check RH's firewall or run on each startup:

# To block http
iptables -A INPUT -p tcp --dport 80 -j DROP
# To block IDENT except to, eg irc.prison.net
# irc.prison.net == 208.178.231.189
iptables -A INPUT -p tcp --dport 113 -s 208.178.231.189 -j ACCEPT
iptables -A INPUT -p tcp --dport 113 -j DROP

I think redhat includes a user-friendly firewall GUI config tool to do that for you...

I think redhat's gui firewall sucks. I want to turn the firewall off completely and it doesn't do it via the gui.