Messages

1

Suggestions / Re: Two-Factor Authentication (2FA) - Google Authenticator for CWP and CWP PRO !

« on: April 23, 2022, 04:40:26 AM »

Noted with thanks!

2

Suggestions / Re: Two-Factor Authentication (2FA) - Google Authenticator for CWP and CWP PRO !

« on: April 22, 2022, 03:33:25 AM »

Use https://hostname:2031

It's possible the proxy get's broken.

Pardon my ignorance but isn't port 2031 supposed to be closed? Isn't that the idea for using DynDNS?

3

Suggestions / Re: Two-Factor Authentication (2FA) - Google Authenticator for CWP and CWP PRO !

« on: April 18, 2022, 01:39:46 PM »

If you truely want to secure your CWP Admin interface, do the following.

Setup DDNS somewhere (No-ip is a good free version)

edit /etc/csf/csf.dyndns   and add your ddns hostname there
edit /etc/csf/csf.conf
find DYNDNS   set it to a value of 600 (10 minutes)  DYNDNS="600";
find DYNDNS_IGNORE = "0"  and change it to 1

On TCP_IN and TCP6_IN, remove port 2086,2087,2030,2031.

then restart csf.  csf -r

You can still login to CWP as long as your match your dyndns, as it allows you through the firewall on all ports.

I've done all of the above EXCEPT remove ports 2086, 2087, 2030, and 2031 (playing it cautious). The system is giving me "Not Found" when I go to HTTPS://<hostname>/login/index.php

Any quick advice?