How to secure proxmox web ui?

leonz

New Member
May 15, 2023
3
0
1
Hello,
How can I best secure Proxmox Web UI?
What I have done:
• Added SSL
• Added two-factor authentication
What I have planned:
• Change default port 8006 to a random port, such as 3462
• Add tunneling by SSH, and change the SSH port to a random port, such as 3462 (is tunneling required when I have two-factor authentication?)
What else can I do?
 
- not use default account like root, admin but create another account with root/admin privileges,
and disable root account afterwards.
- run proxmox behind a reverse proxy (nginx).
- install fail2ban on proxmox server
- allow only known public ip addresses (like from work, friends, family) to your firewall

Or use a vpn if that is possible in your environment.