Author Topic: CWP behind WAF  (Read 8081 times)

0 Members and 1 Guest are viewing this topic.

Offline
*
CWP behind WAF
« on: December 28, 2017, 01:14:51 PM »
Can CWP be used if server it is installed on is behind a Web Application Firewall (WAF)? The WAF uses NAT so all IP's to the server are internal. The server is also a VM, not a physical server. I will have 5-8 websites available to the public.

What issues will I encounter? What other info do you need from me in order to answer my questions? I'm new to Linux, coming from Windoz :-\ I have had a WAMP stack set up in this way for many years without issue but I would like to move to Linux. I would like to keep the new Linux server behind the WAF for ease of administration.

Thanks!

Jeff
« Last Edit: December 28, 2017, 01:17:51 PM by jeffshead »

Offline
*
Re: CWP behind WAF
« Reply #1 on: January 01, 2018, 01:02:28 AM »
So I installed CWP and ticked 'Activate NAT-ed network configuration'. I made sure the correct local IP is set. I'm just getting started and encountered an issue right out of the gate.

If I go to view PHP info, I get the following error (x.x.x.x substituted for my public IP address):

Code: [Select]
Warning: file_get_contents(http://x.x.x.x/phpinfo.php): failed to open stream: Connection timed out in /usr/local/cwpsrv/htdocs/resources/admin/modules/php_info.php on line 0
I've tried accessing the cp via the following URL's but get the same results:
http://sub.mysite.com:2030
http://192.168.1.2:2030
https://sub.mysite.com:2031
https://192.168.1.2:2031

Why is the public IP address being used to get the PHP info even though I have activated NAT-ed network configuration?

Offline
*
Re: CWP behind WAF
« Reply #2 on: January 20, 2018, 02:50:23 PM »
I'm not going to be hosting sites for others so I do not want CWP to be accessible to the public.

Geez... Almost a month and no help  :-[ Will support for the Pro version be the same?
« Last Edit: January 20, 2018, 02:54:39 PM by jeffshead »

Offline
*
Re: CWP behind WAF
« Reply #3 on: January 22, 2018, 02:39:45 PM »
This is my first control panel so all of this is totally alien to me. Can someone please chime in, here? I've already searched the forum but did not find suitable answers.

Are there any issues with using the same local IP address for both the shared and default IP addresses? As I stated earlier, I'm behind a WAF. I want CWP access restricted to the local network but be able to create a NAT, in my gateway device, to give public access only when necessary.

Also, since I will be the only "customer", what do I enter for name servers? Do I just enter the same info I already have listed in DNS for each domain, at the domain name registrars?
« Last Edit: January 22, 2018, 02:46:07 PM by jeffshead »