Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Simple Port Knock for WHM Web Login?

Discussion in 'Security' started by jazee, Nov 7, 2017.

  1. jazee

    jazee Well-Known Member

    Joined:
    Jan 12, 2015
    Messages:
    76
    Likes Received:
    1
    Trophy Points:
    8
    cPanel Access Level:
    Root Administrator
    Wondering if there's a way to setup a simple port knock for the WHM Web Interface Login?

    Essentially, I'd like to set it up so all connection https attempts on port 2087 are ignored unless you first use a browser to go to https://www.mydomain.com:12087 once, then go to the normal port, 2087 to get in within 1 minute.
     
  2. 24x7server

    24x7server Well-Known Member

    Joined:
    Apr 17, 2013
    Messages:
    1,672
    Likes Received:
    73
    Trophy Points:
    28
    Location:
    India
    cPanel Access Level:
    Root Administrator
    Hi,

    You can check the port forwarding setting in the ConfigServer firewall or whatever other firewall you are using..
     
  3. jazee

    jazee Well-Known Member

    Joined:
    Jan 12, 2015
    Messages:
    76
    Likes Received:
    1
    Trophy Points:
    8
    cPanel Access Level:
    Root Administrator
    Using csf. I'm wondering if what I described is even possible. Typically port knocking is used for SSH where you know the ports immediate succession.
     
  4. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    41,455
    Likes Received:
    1,608
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
  5. jazee

    jazee Well-Known Member

    Joined:
    Jan 12, 2015
    Messages:
    76
    Likes Received:
    1
    Trophy Points:
    8
    cPanel Access Level:
    Root Administrator
    The documentation confirms what I was afraid of which is you have to have three ports to knock and you have to use SYN packets can't do this with http requests.
     
Loading...

Share This Page