If you know the sub-net of your VPN you could restrict access to /wp-admin via .htaccess using standard Apache rules.
<Directory /var/www/wp-admin/>
Order deny,allow
Allow from 192.168.1.0/24
Allow from 127
</Directory>
Obviously you’d need to adjust the directory and IP address subnet to suit your needs.
To restrict access to a specific file:
<Files _FILE_.php>
Order allow,deny
Deny from all
Allow from 127.0.0.1
</Files>
Again you can use a sub-net mask to suit your VPN.
Related Posts:
- Can I rename the wp-admin folder?
- Change Login URL Without Plugin
- Share same domain for wp-admin but for different website
- Securing wp-admin folder – Purpose? Importance?
- Can I rename the wp-admin folder?
- Options for restricting access to wp-admin
- How to change “wp-admin” to something else without search-replacing the core?
- Block access to wp-admin
- Change WP-Login or WP-Admin
- Should I add the IP of the server that hosts my sites to the list of authorized IPs in the wp-admin/.htaccess?
- FORCE_SSL_ADMIN not working
- Limit access to wp_admin
- I want to disable login of admin (/wp-admin) with email and make it accessible only with username
- password reset link being sent as HTTP?
- How to Change The WordPress Login URL Without Plugin
- 404 redirect wp-login and wp-admin after changing login url [closed]
- Logout USER form backoffice after 30 minutes of inactivity [closed]
- Do I have to face security problems if I changing default role to Contributor
- Hide username discovery
- Efficient way to check local WordPress php files and Database for malicious code? [duplicate]
- Renaming wp-admin without hard-coding it. Is it really possible?
- Need help for WordPress User Session Management?
- Developer/Designer asking for admin access
- Is WordPress secure enough for a multi-user article directory?
- Can I rename the wp-admin folder?
- CSRF attack to create USER
- Can I rename the wp-admin folder?
- Why WordPress not logout after I have close my browser?
- How to protect wp-admin from third party access?
- Couple questions about .htaccess, login page, updates
- is exposed wp-admin site a serious security vulnerability
- Can a user submit requests to wp-admin/admin.php without logging in?
- adding the category to the admin column for a custom post type?
- Change page title in admin area
- How to filter by post-format in admin?
- how do I force a single column layout in screen layout
- How to add notification bubble for my custom admin menu page
- How to display the user that published a pending post?
- Making a client area in WordPress – Any good tutorials or plugins?
- Copy my user account’s wp-admin dashboard layout to other users?
- Users are redirected to homepage instead of wp-admin
- Is there a way to submit only meta box content in Post edit page
- Moving wordpress from localhost to server throws admin panel access error?
- How to display multiple custom columns in the wp-admin users.php?
- WordPress custom permalinks not working on OS X localhost
- 500 Internal Server Error after Register dialog, but with successful registration
- How to Remove Checkbox for Excerpt Under Screen Options
- How to hide a specific user role option in a user role list?
- Stop loading “collaborators” users on add new post or page?
- Disable the administration email address verification (new in 5.3)
- https://mydomain/wp-admin redirects to wp-login.php?redirect_to=https%3A%2F%2Fmydomain%2Fwp-admin%2F&reauth=1
- Get which template being in use within WordPress-admin
- special characters after saving draft interpreted as �
- Allow administrators to pick post author on custom post type edit screen
- /wp-admin/ works but website doesn’t load
- Add custom list menu on Posts page in admin panel
- Add column to pages table
- Use Password Protected Form without the use of wp-login.php
- My email address is displaying an email which does not work. What do i do?
- Too many redirects after added SSL redirect on port 80 virtual host
- Blank page for wp-admin after i uploaded the website from my localhost to the live server
- Ajax solution similar to WP Categories functioning in Admin area
- Difference between admin and user admin
- How to get specific page screen ID
- What is the correct way to get only display plugin for Administrator Only
- WordPress Brute Force Prevention
- displaying an error before update_post_meta
- firing function at login within class
- How to break line / add to ADMIN menu
- WordPress admin page not found error
- Use of domain name
- “Add New” button on custom post type grid
- Where is function to prevents non logged users access wp-admin?
- Registering for a domain on WordPress
- CSS of the admin panel
- WordPress admin right sidebar isn’t working
- Why wp redirects me to wp-login.php when I visit a rewritten wp-admin URL?
- wp-admin blocking causing http error on uploads
- DISALLOW_FILE_EDIT is false but I still am not able to edit files from the admin interface and the menus do not show up
- Updated MAMP and localhost on MacOS site no longer accessible
- What hooks should you use to create a table only once?
- Custom admin menu order fails if slugs are complicated
- Cant access wp-admin
- Function to get a ‘post selector’ UI?
- WordPress wp-admin Page
- How can I trigger a javascript function after a post update on edit post screen in wordpress admin panel?
- restrict admin panel sections to users
- how to set not to be logined in wp-admin except administrator?
- WordPress, content editor default type
- Changing headers for an export from within a PHP class extension
- When installing wordpress through WP CLI mysite.com/admin not working
- Remove capability to interact with a page
- WordPress Login for multiple sites
- How do I change the WordPress Address URL only and still login to wp-admin
- wordpress wp-admin showing white screen with no error
- Undeletable posts, users or other content
- Blank sign in page
- Action for opening edit page in admin?
- WordPress Localhost migration issue
- My wordpress admin backend doesnt go to links anymore