Creating an IP Whitelist

ShulNET allows you to greatly improve the security of your administrative dashboard by creating a “whitelist” of IP addresses that will be permitted to access the program (currently only supports IPv4).

By default, the program accepts all IPs attempting to access the control panel. This is called “single layer” security, since users only need a valid username and password to access the control panel. The IP whitelist adds a second layer of security by requiring that the user’s IP be permitted to load the control panel before they can attempt to login.

Things to Remember

If you choose to employ a whitelist, only the IPs on the list will have access. This means that if you whitelist an employee’s work computer but want them to work from home as well, you will need to whitelist the home computer’s IP.

Many IPs are not static, and they will change over time. This means you will have to keep the whitelist up to date with any changes to dynamic addresses.

Establishing a Whitelist

To establish a whitelist, you will need to edit the file named ip_whitelist.php located in the admin/sd-system folder. The default file looks like this:

<?php
$whitelist_ips = array();
// $whitelist_ips[] = '123.123.123.123';
// $whitelist_ips[] = '456.456.456.456';

To whitelist an IP, effectively blocking all other IPs from accessing the control panel, update the file to look like this, keeping in mind that you will need to update the actual IP address in this example to reflect the true IP addresses you are attempting to whitelist:

<?php
$whitelist_ips = array();
$whitelist_ips[] = '11.22.33.44';
$whitelist_ips[] = '99.88.77.66';
Was this article helpful to you? Yes No

How can we help?