Control Web Panel

WebPanel => CentOS-WebPanel GUI => Topic started by: bgf2 on December 07, 2016, 07:24:40 PM

Title: how to secure login ip
Post by: bgf2 on December 07, 2016, 07:24:40 PM
Hello,
i am using cwp to host my sites, but i have an issue, i am using cloudflare for security reasons, but the problem is when someone wants to know my real ip it can be very easy to find, if he just type http://domain-url.com/cpanel and it will redirects to ip:2030
which reveals the original ip. how could i tackle this please explain
Title: Re: how to secure login ip
Post by: dukkha on December 07, 2016, 08:55:04 PM
This is caused by apache default CWP redirect rules

Go to

-Apache Settings
--Apache Redirects

Delete any redirects pointing to your IP addresses or simply replace IP by Domain name.

Hope it helps.
Title: Re: how to secure login ip
Post by: hguariente on February 10, 2017, 09:30:15 PM
Edit

Apache virtual host template

add

Redirect permanent /roundcube http://%domain_name%:2095
Redirect permanent /webmail http://%domain_name%:20


EXP
# vhost_start %domain_name%
<VirtualHost %domain_ip%:%domain_port%>
ServerName %domain_name%
ServerAlias www.%domain_name%
ServerAdmin %admin_email%
DocumentRoot "%homedir%/%username%/public_html"
ScriptAlias /cgi-bin/ "%homedir%/%username%/public_html/cgi-bin/
Redirect permanent /roundcube http://%domain_name%:2095
Redirect permanent /webmail http://%domain_name%:2095
#
Title: Re: how to secure login ip
Post by: aicon on February 14, 2017, 06:03:22 AM
It seems that can't be deleted completely.
Removed all redirects, also edited the vhost templates, but anydomain/cwp and anydomain/cpanel are still redirecting to the IP.
I assume will be fixed in the future versions.
Also I did'n find how to restrict thegui access only thru https.
Any link, description highly appreciated.