Basic Question about Blocking Access to the WHM and CPanel Pages

Jim Hill

Registered
Aug 8, 2016
2
0
51
United States
cPanel Access Level
Reseller Owner
I have of course created a hostname for my WMH/cPanel server in the form something.mydomain.com and only access WMH and cPanel through the ports 2087 and 2083. All of my sites also are proxied through a firewall so that no traffic needs to ever hit ports 80 and 443 directly to the hostname. Does it make sense for me to block access to the server for ports 80 and 443 except to the the CIDR ranges for those firewalls (which can send traffic through either of those ports)? I ask because I see traffic being blocked by Modsecurity rules coming directly into the hostname.
 

cPRex

Jurassic Moderator
Staff member
Oct 19, 2014
10,431
1,634
363
cPanel Access Level
Root Administrator
Hey there! This might cause some issues with the free SSL that is provided for the hostname as the verification checks for that certificate do happen over a web connection. However, we do have a list of IPs for that particular traffic you could allow through the firewall if you can configure that:


Those IPs could change in the future, but you'd get a notification from the server if the hostname SSL failed to renew for some reason.
 
  • Like
Reactions: Jim Hill

Jim Hill

Registered
Aug 8, 2016
2
0
51
United States
cPanel Access Level
Reseller Owner
The site is already behind Sucuri, but would it make sense to just lock down the countries using CSF country code blocks and my Maxminds API license? It is easy to lock down the most frequent offenders.