Cumulus Support

Hi, sorry for my english, i'm french, so, is it possible to have a option for use login and password to acces cumulusmx web ? i acces it out of my home and it's not really secure because the port should be open and anyone can modify my settings....

This has come up many times.

To enable password access to the settings pages really requires HTTPS to be implemented, that will not happen any time soon. Password access using HTTP is possible, but of course the data can be sniffed on the network as it is passed in clear text.

Rather than exposing the Cumulus interface to the internet**, it is better to setup something like a VPN or use one of the remote access programs.

If must do this then at least restrict access to specific IP addresses either in your router our firewall or both.

You could proxy access through a web server on an external host. Or you could use a VPN. Or you could use rules in your router firewall to restrict access.

Note that none of the above solutions is 100% secure. For that reason I would advise against allowing remote access to your MX interface. If you want to see your weather data when away from home then deploy the default website to an external web server and access the data through that

ok, i'll see about a solution thanks

Meteo07 wrote: ↑Sun 03 Oct 2021 6:42 pm ok, i'll see about a solution thanks

Alot of routers have built in VPN servers now. I have an Asus router which has two options; OpenVPN (most secure) and PPTP (not really secure). Both have their advantages. PPTP, while insecure, offers Windows machines native access without having to install client software. OpenVPN however uses certificates and their cypher is much stronger (PPTP uses 128 bit which is easy to crack, OpenVPN does 160bit and 256bit -- not as easy to crack). I use both because I have a need for both with my work laptop being pretty restrictive on the programs I use. I also use firewalls to limit the IPs I allow access to my network. I have to use the router anyway because my ISP won't allow inbound traffic on my network to the standard HTTP port of 80. Not sure about the HTTPS port (443) haven't tried it.

BigOkie wrote: ↑Thu 14 Oct 2021 7:01 pm Alot of routers have built in VPN servers now....

Another Vote for VPN.
Routers have come a long way in terms of the ease of use for their VPNs.

I run L2TP/IPSec here & it works a dream on all my android devices & it's just a 30 second setup on any client PC.

With dozens of devices here on my local Subnet with Web interfaces it's a breeze to control them remotely despite many of them having no remote security.