The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Restrict 2086 / 2087 / 22 to PRIVATE IP (ETH1)

Discussion in 'Security' started by mferry, Jan 25, 2015.

  1. mferry

    mferry Member

    Joined:
    Nov 25, 2013
    Messages:
    15
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    Pittsburgh, PA USA
    cPanel Access Level:
    DataCenter Provider
    Folks,

    Just throwing this idea out. Some of my WHM servers have two NICs. I have always used eth0 as a public IP and all services used over this IP.

    Including my WHM access and SSH.
    SSH is restricted to a few known public IPs (cPanel Support IPs and my NOC)

    I would like to start using eth1 on each server with a private IP (10.X.X.X)
    I would then like to have WHM (2086 / 2087) and SSH (22) only listen on this private IP.

    User accounts will always be using the public IP on eth0.
    cPanel access on 2083/2082, ftp 21, etc will all remain on the pubic IP.


    BUT from the public IP there would be no access to WHM or SSH.

    Is this wise?
    Can this be done?


    Thanks
     
  2. 24x7server

    24x7server Well-Known Member

    Joined:
    Apr 17, 2013
    Messages:
    1,145
    Likes Received:
    34
    Trophy Points:
    48
    Location:
    India
    cPanel Access Level:
    Root Administrator
  3. mferry

    mferry Member

    Joined:
    Nov 25, 2013
    Messages:
    15
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    Pittsburgh, PA USA
    cPanel Access Level:
    DataCenter Provider
    Thanks --- I didn't know the "Host Access Control" could limit WHM, cPanel, webmail, etc.
    I have always used HAC to limit SSH access.

    This is kinda what I am looking for.
    I would like to shut off the 2087, 2086, 22 ports 100% on the public side.
     
  4. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,678
    Likes Received:
    648
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
Loading...

Share This Page