Is Proxmox webui secure enough to leave it open to internet?

K

Kane

Member
Mar 19, 2020
10
0
6
Hello!

Mostly everything is in the title, I am tempted to try installing and using Proxmox on a VPS soon, but was wondering how to manage the admin access between adding a vpn to allow to access the webui, or just leaving it as is after updating the certificate and eventually port.

Is there a recommanded or official way to do so? I searched but find nothing on the subject (or maybe missed to good keyword)

Thanks in advance for your help!
 
You could enable 2FA for the webUI, setup fail2ban and public-private-key authentification for SSH. And as PVE is no appliance so bugs/security holes get fixed very fast. So it should be atleast as secure as all the other webUIs.
But a non-public webUI behind a VPN and maybe even a OPNsense VM with IPS enabled is of cause always more secure.
 
  • Like
Reactions: datschlatscher
You must log in or register to reply here.
Top Bottom