Your firewall and your web server's status page hold some of the most useful operational data on a server — and normally you have to SSH in to see either. Monitorix brings both into your dashboard, safely, through the agent. No extra ports opened, no status page exposed to the public internet.
How does firewall detection work?
When the agent is installed, it detects which firewall the server uses — CSF, UFW, firewalld, or iptables — automatically. You don't configure it by hand. Monitorix shows the detected type on the server's management page and, if you opt in, lets Monitorix manage it.
What firewall actions can I take from Monitorix?
- View active rules — pull the live rule listing (
csf -l,ufw status,iptables -L, or firewalld's list) on demand. - Control the service — start, stop, or restart the firewall service.
- Manage rules — allow or deny a port or IP, or remove a rule.
- Block/unblock IPs — keep a managed block list per server.
Every one of these runs through the agent on your server and relays the result back — Monitorix never connects into your server to do it.
How does server-status viewing work?
If your server runs Apache with mod_status or nginx with stub_status, Monitorix detects the local status endpoint. When you click to view it, the agent fetches the status page from localhost on the server itself and relays the content to your dashboard. That means:
- you don't have to expose
/server-statusto the internet; - you don't have to whitelist Monitorix's IP in your web-server config;
- it works even if the server is behind NAT.
Is any of this on by default?
No. Detection is read-only and informational. Firewall management, service control, and status fetching all happen only when you enable or request them from the dashboard. You stay in full control of your server.
Getting started
Install the Monitorix agent; the firewall and any server-status endpoint are detected automatically and appear on the server's management page, ready for you to use.