New Question
 
 
PRTG Network Monitor

Intuitive to Use.
Easy to manage.

200.000 administrators have chosen PRTG to monitor their network. Find out how you can reduce cost, increase QoS and ease planning, as well.

Free PRTG
Download >>

 

What is this?

This knowledgebase contains questions and answers about PRTG Network Monitor and network monitoring in general. You are invited to get involved by asking and answering questions!

Learn more

 

Top Tags


View all Tags


PRTG web-console publishing.

Votes:

0

Your Vote:

Up

Down

Hello!

We publish web-console to open internet and from the next day we come across with login brute force. Is there any way to publish PRTG only for Mobile Apps and not publish web-console? Or is there any way to add two-factor authentication?

Thank you!

console prtg publish

Created on Nov 9, 2018 1:29:57 PM by  Vasiliy (45) 1



2 Replies

Votes:

0

Your Vote:

Up

Down

Hello Vasily,

Thank you very much for your question.

As we don't support client certificates in none of our clients at present, you'll need to whitelist the following paths in order to fully use the mobile apps:
/api/* /mapshow.htm /controls/screenshot.htm /historicdata_html.htm /chart.png /chart.svg /editsettings /wingui.htm /generatereport.htm

Best regards,
Sebastian

Created on Nov 12, 2018 11:58:34 AM by  Sebastian Kniege [Paessler Support]



Votes:

0

Your Vote:

Up

Down

There is further a reverse proxy you can set in front of your PRTG installation - this allows you to pre-filter the incoming traffic a bit.

As for security - you should do a few things:

  • use an external IP from your range (if possible) that you haven't use before for WEB
  • put a reverse proxy in place in the DMZ
  • make sure only the specific URL for PRTG gets through
  • use a certificate on the webserver - encrypted traffic only - this is hopefully already in place
  • chose a secure URL - something like WELOVEPRTG.COMPANY.COM - something not to obivous
  • LDAP login for regular user accounts in a specific group only

This list can go on with a view special settings - but for the most part this is what you should do... In theory you might be able to alter the PORT as well to go away for 443 - but now it becomes a bit more complicated...

PRTG overs a cloud solution as well - there it is their responsibility to avoid the issue and make sure it is secure - depending on your needs probably just another way to go..

Regards

Florian Rossmark

www.it-admins.com

Created on Nov 12, 2018 3:04:09 PM by  Florian Rossmark (4,285) 4 2

Last change on Nov 12, 2018 9:12:35 PM by  Dariusz Gorka [Paessler Support]



Please log in or register to enter your reply.


Disclaimer: The information in the Paessler Knowledge Base comes without warranty of any kind. Use at your own risk. Before applying any instructions please exercise proper system administrator housekeeping. You must make sure that a proper backup of all your data is available.