Secure plex instance from brute force attacks

25th · August 9, 2021, 1:14am

Hi Everyone I would consider myself pretty novice when it comes to Plex.
I have been running my own plex instance for a while now (really smooth really enjoying it! so far!.)

I was looking in to hardening my exposed services (ombi{plex login} and Plex) they are running behind a revers proxy. so I looked in to fail2ban. But i cant seem to see any failed logs when i try on purpose to give it faulty log in info.

I have been told the logins go through plex.tv and thos i wont see the failed logins, and I was wondering how accrue it is? and if there is any thing i can do to harden my Plex instance from brute force attacks?

Thank you for your help
Server Version#: 4.59.2

kegbeach · August 9, 2021, 1:53am

Activate 2FA on your account. Make sure the reverse proxy is only accessible via subdomain, not IP address.

For example you need to type in subdomain.myplexserver.com to access but typing in the IP (eg: 24.36.214.55) will just go to a default landing page.

system · November 7, 2021, 1:54am

This topic was automatically closed 90 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Setting up Fail2Ban with Plex Desktops & Laptops server-linux	11	5406	January 8, 2020
How to implement fail2ban on Plex Media Server? Remote Access server-linux	5	372	November 27, 2021
Logging (specifically remote login) Remote Access server-linux	7	694	August 7, 2019
Redirecting unknown logins to Forbidden / Unauthorized page Plex Media Server server-linux	18	69	August 8, 2024
Login fail log file request Feature Suggestions server-linux , server-docker , server-unraid , android-tv	8	112	November 24, 2023

Secure plex instance from brute force attacks

Related topics