Hi @himurae , then I understand you are wanting to access the IPFire WUI directly from the internet.
Just a caution about this. With that setup anyone on the internet can try and access that WUI and use Brute Force tactics to break the password.
The recommendation is not to open the WUI directly to the internet.
https://community.ipfire.org/t/request-add-2fa-to-login/10142/7
A better approach would be to use a VPN roadwarrior connection to access the WUI from the internet.
https://wiki.ipfire.org/configuration/services/openvpn
However, if you do plan to keep the WUI directly accessible from the internet then I would recommend the following:-
- Set your WUI password to be a really ““STRONG”” password so that the Brute Force approach will take longer.
- Install the Guardian addon - https://wiki.ipfire.org/addons/guardian where you can set it up to block users who get the password wrong a certain number of times. The default is password wrong 3 times and the defauilt block time is 24 hours. You can also log the info so you can see the IP addresses of any blocked users. Hopefully you don’t end up with many attempts but at least you will be able to easily see what has been attempted.