• Hi, Pleskians! We are running a UX testing of our upcoming product intended for server management and monitoring.
    We would like to invite you to have a call with us and have some fun checking our prototype. The agenda is pretty simple - we bring new design and some scenarios that you need to walk through and succeed. We will be watching and taking insights for further development of the design.
    If you would like to participate, please use this link to book a meeting. We will sent the link to the clickable prototype at the meeting.
  • (Plesk for Windows):
    MySQL Connector/ODBC 3.51, 5.1, and 5.3 are no longer shipped with Plesk because they have reached end of life. MariaDB Connector/ODBC 64-bit 3.2.4 is now used instead.
  • The Horde webmail has been deprecated. Its complete removal is scheduled for April 2025. For details and recommended actions, see the Feature and Deprecation Plan.

Question Can the Plesk Firewall extension potentially 'Lock me out' of a server?

Craig1986

Basic Pleskian
I am contemplating the installation of the Plesk Firewall extension, where I can see that Policies and Rules can be set as to restrict access to a server based on IP.

Firstly, what is the difference between restricting access by IP within 'Plesk's Firewall Extension' and within 'Tools & Settings > Restrict Administrative Access'? Would I be right in thinking that the latter simply restricts access to Plesk only while the former restricts multiple methods of access (Therefore, via Plesk and SSH etc)?

Secondly, I am worried I may be 'locked out' of the server. Ideally, I would like to restrict all access to a specific IP address. In the event that my IP changes (The need to restart Router for example), what would be the situation then? Am I right in thinking I would be locked out of the server completely or have I misunderstood Plesk's Firewall extension here?
 
Hi

If you have dinamyc IP of course you not need setup any access by IP restriction

Instead plese use two factor autentification

Plesk firewall will not block you if you configure it in correct way
 
Hi, @Craig1986.
Firstly, what is the difference between restricting access by IP within 'Plesk's Firewall Extension' and within 'Tools & Settings > Restrict Administrative Access'? Would I be right in thinking that the latter simply restricts access to Plesk only while the former restricts multiple methods of access (Therefore, via Plesk and SSH etc)?
Yes, "Restrict Administrative Access" just allow or deny login to Control Panel for Plesk Administrator or Additional Plesk Administrator from some specified IPs. Firewall can deny access for any IP to any port, so using firewall you can deny login to Control Panel for all users.

Secondly, I am worried I may be 'locked out' of the server. Ideally, I would like to restrict all access to a specific IP address. In the event that my IP changes (The need to restart Router for example), what would be the situation then? Am I right in thinking I would be locked out of the server completely or have I misunderstood Plesk's Firewall extension here?
By default Plesk Firewall have no rules, which deny access to Control Panel or SSH. But if you add specific rules, that deny access for all IPs instead yours, than you really will be locked out. So better be carefully with deny rules, especially for SSH access (SSH can be used to repair everything, except broken SSH access =))
 
Back
Top