What is this?

This knowledgebase contains questions and answers about PRTG Network Monitor and network monitoring in general.

Learn more

PRTG Network Monitor

Intuitive to Use. Easy to manage.
More than 500,000 users rely on Paessler PRTG every day. Find out how you can reduce cost, increase QoS and ease planning, as well.

Free Download

Top Tags


View all Tags

PRTG web-console publishing.

Votes:

0

Hello!

We publish web-console to open internet and from the next day we come across with login brute force. Is there any way to publish PRTG only for Mobile Apps and not publish web-console? Or is there any way to add two-factor authentication?

Thank you!

console prtg publish

Created on Nov 9, 2018 1:29:57 PM



2 Replies

Votes:

0

Hello Vasily,

Thank you very much for your question.

As we don't support client certificates in none of our clients at present, you'll need to whitelist the following paths in order to fully use the mobile apps:
/api/* /mapshow.htm /controls/screenshot.htm /historicdata_html.htm /chart.png /chart.svg /editsettings /wingui.htm /generatereport.htm

Best regards,
Sebastian

Created on Nov 12, 2018 11:58:34 AM by Sebastian Kniege [Paessler Support]



Votes:

0

There is further a reverse proxy you can set in front of your PRTG installation - this allows you to pre-filter the incoming traffic a bit.

As for security - you should do a few things:

  • use an external IP from your range (if possible) that you haven't use before for WEB
  • put a reverse proxy in place in the DMZ
  • make sure only the specific URL for PRTG gets through
  • use a certificate on the webserver - encrypted traffic only - this is hopefully already in place
  • chose a secure URL - something like WELOVEPRTG.COMPANY.COM - something not to obivous
  • LDAP login for regular user accounts in a specific group only

This list can go on with a view special settings - but for the most part this is what you should do... In theory you might be able to alter the PORT as well to go away for 443 - but now it becomes a bit more complicated...

PRTG overs a cloud solution as well - there it is their responsibility to avoid the issue and make sure it is secure - depending on your needs probably just another way to go..

Regards

Florian Rossmark

www.it-admins.com

Created on Nov 12, 2018 3:04:09 PM

Last change on Nov 12, 2018 9:12:35 PM by Dariusz Gorka [Paessler Support]




Disclaimer: The information in the Paessler Knowledge Base comes without warranty of any kind. Use at your own risk. Before applying any instructions please exercise proper system administrator housekeeping. You must make sure that a proper backup of all your data is available.