OpenEMM Technical Support Forum

The purpose of these forums is to get and give free technical support for OpenEMM. Spammers and their posts will be removed without prior warning.
https://iframe.agnitas.de/

Admin Console lockdown?

https://iframe.agnitas.de/viewtopic.php?t=1005

Page 1 of 1

Admin Console lockdown?

Posted: Sun Jan 18, 2009 1:52 am
by eolesky
Hi,

I am new to openemm. I installed version 5.5.1 and it is up and running.
For security purposes I would like to seperate the admin console and the redirection service to different ports. Currently both are listening on port 8080. This allows anyone with access to the redirection ip address to have access to the admin console. Is there a way to configure this?

Thanks

Posted: Fri Jan 23, 2009 11:47 am
by eshine
Hi

you can set an apache in front of your openemm and redirect the requests depending on your needs to either the admin console or to any other site inside openemm. This can be done by mod_proxy. I don't think there's a way to add a new listener on port 8081 only for the admin console.

Or you could just redirect any request for the admin console from the outside to 404. This needs much more configuration setting than in the example below but the way hopefully should be understandable :-).

Your Admin console is then still available over direct access to openemm. Remember that in this case you're using apache instead of iptables to redirect the requests from port 80 to 8080.

Example:

Code: Select all

<virtualhost www.myopenemm.org>
ProxyRequests Off

<Proxy *>
Order deny,allow
Allow from all
</Proxy>

ProxyPass /admin http://myopenemm.org:8080/404
ProxyPassReverse /admin http://myopenemm.org:8080/404 
</virtualhost>
http://httpd.apache.org/docs/2.2/mod/mod_proxy.html[/url]
All times are UTC+01:00
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited