September 7, 2024
Security
IP Blocking
To block an IP, click on the tab Security and on the button Add IP top right.
The IP to block can be entered as ipv4 or ipv6 format. Click on the button Add IP to save.
Examples:
- 8.8.8.8 (ipv4)
- 192.168.0.1/32 (ipv4 CIDR Format)
- 2400:6180:100:d0::99b:5001 (ipv6)
Bots Blocking
To block a Bot, click on the tab Security and on the button Add Bot top right.
Enter the Bot Name and click on the button Add Bot to save.
Bot Name
The Bot Name is case insensitive. As example: fatbot would be the same as FatBot.
Basic Authentication
A Basic Authentication is useful to prevent traffic to your site when you don’t want to have it public, e.g., during the development of a project or for test/staging environments.
To enable the Basic Authentication, use the switch, enter a User Name and Password, and click on Save.
Cloudflare
If you use Cloudflare, you should Allow traffic from Cloudflare only that attackers cannot bypass the domain.
Ensure that your DNS Records are Proxied (orange cloud) through the Cloudflare network.
SSH/FTP
The SSH protocol (also referred to as Secure Shell) is a method for securing remote login from one computer to another.
It provides several alternative options for strong authentication, and it protects the communication’s security and integrity with strong encryption.
Adding a User
To add a new SSH User, click on the tab SSH/FTP and enter a User Name and Password and click on Add User.
Add your Public SSH Key(s) if you want to log in via Public Key authentication.
Deleting a User
To delete an SSH User, click on the tab SSH/FTP and then on Delete and confirm your action.
Password Change
To change the password for an SSH User, click on the tab SSH/FTP and then on the User Name.
Enter a new strong Password or click on Generate new password and click on Save.
SSH Login
ssh john-doe@instance-ip-address
SSH login via private key
ssh -i path_to_your_private_key.pem john-doe@instance-ip-address
Windows:
In the Host Name field, enter the instance ip address and click on the button Open.
Putty will ask you to enter the User Name and Password in the next step.
SFTP Login
To login via SFTP to the instance, you need a client like FileZilla.
Make sure that the SSH port 22 is open for your ip address.
Enter the Host, Username, Password and Port fields and click on the button Quickconnect.
Port
Make sure to use port 22 for an SFTP connection.
FTP
The File Transfer Protocol (FTP) is a standard network protocol used to transfer computer files between a client and server on a computer network.
Adding a User
To add a new FTP User, click on the tab SSH/FTP and enter a User Name, Password, and Home Directory and click on Add User.
Deleting a User
To delete an FTP User, click on the tab SSH/FTP and then on Delete and confirm your action.
Password Change
To change the password for an FTP User, click on the tab SSH/FTP and then on the User Name.
Enter a new strong Password or click on Generate new password and click on Save.
FTP Login
To login via FTP to the server, you need a client like FileZilla.
Ensure the Proftpd MasqueradeAddress is correctly set.
Go to the Firewall in the Admin Area and add the following rule.
- Click on Add Rule to open the ports 20-21 for your IP.
CloudPanel will also create the rule ProFTPD Passive Ports which opens the port range 49152-65534 for your IP.
- Open Filezilla and enter Host, Username, Password and Port fields and click on the button Quickconnect.
Port
Make sure to use port 21 for an FTP connection.
