• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • We are looking for U.S.-based freelancer or agency working with SEO or WordPress for a quick 30-min interviews to gather feedback on XOVI, a successful German SEO tool we’re looking to launch in the U.S.
    If you qualify and participate, you’ll receive a $30 Amazon gift card as a thank-you. Please apply here. Thanks for helping shape a better SEO product for agencies!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Resolved IP-A Firewall allow IP address and deny all IP.

Hajime Tanaka

Hajime Tanaka

Regular Pleskian
As I have knowledge from CSF plugin installed on WHM/cPanel, Firewall Allow & Deny IP list easy to setup.

But I found it Plesk Onyx Web Pro Edition > Tools & Settings > IP Access Restriction Management.

"127.0.0.1, 127.0.0.1" If possible more IP Address allowed firewall access to Plesk Panel and deny all IP address won't access?

Is it my friend and only me two IP address needed to add Firewall IP allow and deny all IP?

But I've installed a plugin "Firewall rule" from Plesk.
 
The "IP Access Restriction" does not refer to websites and services on the host, but to the administrative Plesk access. When you limit access to only two IPs, only these two IPs can access Plesk, but everyone can still access websites and other services on the system.

The "Firewall" is a different thing. The firewall blocks ports on the host. It does not block specific IP addresses.
 
Peter Debik said:
The "IP Access Restriction" does not refer to websites and services on the host, but to the administrative Plesk access. When you limit access to only two IPs, only these two IPs can access Plesk, but everyone can still access websites and other services on the system.

The "Firewall" is a different thing. The firewall blocks ports on the host. It does not block specific IP addresses.
Click to expand...
Thanks for the info.

Which I pick "Allowed, excluding the networks in the list" or "Denied from networks that are not listed" from my friend and my IP two only allowed on SSH and Plesk Panel. And IP Everyone won't access SSH & Plesk panel?

But I haven't enabled yet. I've added my IP address and friend IP from IP Access Restriction Management.
 
If you only want to allow two IP addresses and no other IP addresses to be able to access your Plesk admin interface, you need to pick "Denied from networks that are not listed" and add your two IP addresses to the list of IP addresses.

This will only affect the Plesk panel access. It will not affect SSH. For SSH control, you will need to either create an individual iptables entry or add these entries to your /etc/hosts.allow file:
Code: 
sshd : localhost : allow
sshd : 127.0.0. : allow
sshd : <your first IP address here> : allow
sshd : <your second IP address here> : allow
sshd : ALL : deny
# service sshd restart

Make sure that your IP addresses are not dynamic addresses, but static. Else you will yourself lockout from your server once the IP address changes.
 
Peter Debik said:
If you only want to allow two IP addresses and no other IP addresses to be able to access your Pl :0esk admin interface, you need to pick "Denied from networks that are not listed" and add your two IP addresses to the list of IP addresses.

This will only affect the Plesk panel access. It will not affect SSH. For SSH control, you will need to either create an individual iptables entry or add these entries to your /etc/hosts.allow file:
Code: 
sshd : localhost : allow
sshd : 127.0.0. : allow
sshd : <your first IP address here> : allow
sshd : <your second IP address here> : allow
sshd : ALL : deny
# service sshd restart

Make sure that your IP addresses are not dynamic addresses, but static. Else you will yourself lockout from your server once the IP address changes.
Click to expand...
Thanks for the knowledge!

I'm not home right now, I'm at school for 4 clocks then get out home. I will take look this test. If was works then I will put your "replied for best answer". :)
 
EDIT: It's working on Plesk panel allowed IP, But doesn't work on SSH firewall. I restarted SSH service already.

But possible also Firewall for Pure-FTPD?
 
Last edited:
You must log in or register to reply here.

Similar threads

Daveo
Question Cloudflare/Plesk with home server
Replies
2
Views
202
Daveo
Daveo
F
Question IPv4 forwarding rule
Replies
8
Views
274
alvarezcruz
alvarezcruz
R
Question Disable FTP on single ip address
Replies
3
Views
278
Kaspar
K
majdi draouil
Question How to Block Direct IP Access and Ensure All Traffic Routes Through Cloudflare
Replies
1
Views
590
Raul A.
R
Z
Question Is there a way to block already known abusive IP before they can reach the server?
Replies
1
Views
442
King555
K
Back
Top