Restrict Access VitalPBX Admin, Sonata Suites and Vitxi

RenatoSagcal · October 11, 2024, 12:25am

Hi Guys,

Is there a way to restrict access on Sonata Suites, Vitxi and etc (443 ports)

If I allow 443 on specific IP address it means that the user can access all those using 443 ports, like the following. Assuming on user1 I just want to give access only on Vitxi. I want to implement least privilege principle for better security wherein the user can access only what he/ she authorize to access. Yes, it has a login but it should also not accessible to user. Also, the login right now for Vitxi and Sonata Suites doesn’t have yet 2FA wherein its a great opportunity for the intruders to do brute force login.

[server-domain - administration
[server-domain]/webrtc/ - Vitxi
[server-domain]/recordings/
[server-domain]/stats

miguel · October 11, 2024, 2:55am

No, using different port per app isn’t possible!

RenatoSagcal · October 11, 2024, 4:41am

How about editing the .conf files in apache2 sites-enabled?
Instead of Require all granted change to Require ip x.x.x.x?

miguel · October 11, 2024, 2:21pm

You can try it!

Keep in mind that your changes will get overwritten on every package update!

system · November 10, 2024, 2:22pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.