Ports and addresses, Webmin configuration menu, ports and addresses – RuggedCom RuggedRouter RX1100 User Manual
Page 35
2. Webmin Configuration
Revision 1.14.3
35
RX1000/RX1100™
force attacks. The best way of addressing this problem is to restrict access to specific IP addresses
or subnets.
By default, IP access control allows all IP addresses to access Webmin.
If your router is being used on a completely private network, or IP access control is being provided
by the firewall you may leave IP Access Control disabled. Select the Allow from all addresses field
and Save.
If you wish to restrict access to a single address or subnet, select the Only allow from listed
addresses field. Enter a single IP address or a subnetted address.
If you wish to deny access to a specific subnet, select the Deny from listed addresses field. Enter
a single IP address or a subnetted address.
If DNS is configured you may allow and deny based upon hostname. Partially qualified domain names
such as *.foo.com are acceptable.
The Resolve hostnames on every request field forces Webmin to perform a hostname lookup for
every user access. The result of this will be that a dynamically assigned IP with a DNS entry with a
Dynamic DNS registrar will be able to be checked against the IP Access Control list, just like a fixed
address. This method is useful for administrators who travel or simply don't have a fixed address at
their normal location.
Note
This is not efficient if you have more than a few domain names entered in the IP Access Control
list, due to the high overhead of performing a name lookup for every hostname in the list on every
request.
2.2.1.1. Ports And Addresses
Figure 2.3. Webmin Configuration Menu, Ports and Addresses
This command allows you to restrict access to Webmin from one particular network interface on your
server. If your Webmin server has a non-routable local address and a routable Internet address, you
should decide whether anyone will ever need to be able to access the Webmin server from outside
of your local network. If not, simply configure Webmin to listen on the local interface.
By default, Webmin listens on TCP port 10000 for clients. It is possible to change this default
behaviour.