Our features site is undergoing a refresh! Be sure to explore the revamped site and discover our latest product roadmap launching here on Monday, March 18th.
New Topic
cPanel & WHM Feature RequestsTopicSecurity
Properties
Category Security
Tags outgoing, IP, multiple main IP addresses, multiple interfaces

Bind user to the IP they are assigned to

Michael24 shared this idea 9 years ago
Needs Feedback

I put this into security, although it is also good for networking


Currently there is no possibility, known to me and CPanel Support, to force

clients to use their own IP address for outgoing connections (Scripts,

CURL etc.) as CPanel is not involved in any routing issues.


Clients on the shared main IP can bind outgoing connections to any dedicated IP on

the same server (they know about) on the same subnet or Gateway (on MAC

based routing). Needless to say that this is horrible securitywise as

they could identify themselve as someone else on abusive behaviour.


I have a setup with one shared IP with many clients and one dedicated IP,

which is used internally and is also used for licensing CPanel and

other stuff. I was forced to set a default route src to the dedicated

IP. No surprise, now ALL traffic leaves the server from the dedicated

one, even if a shared client issued the connection.


If I do not set a default route to the dedicated IP ALL outgoing traffic is routed over the shared main IP.


So it would be a good idea to enforce that clients can not use other IPs which are not assigned to them.

3 I like this idea 0  

Replies (1)

photo
2
Aila 9 years ago

How do you propose we do this?

Reply
Leave a Comment
 
Attach a file

cPanel, WebHost Manager and WHM are registered trademarks of cPanel, L.L.C. for providing its computer software that facilitates the management and configuration of Internet web servers.