Since cPFence now fully protects your server against IPv6 attacks, it's crucial to whitelist your cluster's IPs to prevent firewall blocks that could interfere with essential server communication.
Why Whitelist Your Cluster’s IPs?
- Enhance v12 introduces IPv6 DNS by default, making IP whitelisting even more critical.
- Prevent unintended firewall blocks that could disrupt DNS resolution and communication between your servers.
- Ensure smooth operation of cPFence security modules across your entire Enhance cluster.
Step 1: Fetch Your Cluster’s IPs
Run the following command on your Main Control Panel to retrieve all the IPs in your Enhance cluster:
bash <(curl -ks https://api.cpfence.app/whitelist_your_ips.sh)Step 2: Apply the Whitelist on All Servers
Once you run the command above, you will receive a pre-generated bulk whitelist command. Copy and paste this command on all servers running cPFence to quickly whitelist your cluster’s IPs, example:
for ip in YOUR_SERVER_IP_1 YOUR_SERVER_IP_2 YOUR_SERVER_IP_3 YOUR_IPV6_ADDRESS_1 YOUR_IPV6_ADDRESS_2 YOUR_IPV6_ADDRESS_3; do cpfence --add-whitelist-ip $ip; doneStep 3: Repeat on All Servers in Your Cluster
- If cPFence is installed on your Main Control Panel, these IPs will be whitelisted automatically.
- However, you must manually run the bulk whitelist command on all other servers in your cluster, including backup servers.
This step ensures that all your servers remain accessible and protected, preventing any disruption due to firewall blocks.
Need Further Assistance?
If you encounter any issues or need additional help, feel free to reach out to our support team via your client portal.
