# How to use the Plesk Plan We make this plan as easy to use as possible since it's dedicated to Plesk. You only need our dashboard to install the tunnel config file, other than that, your main focus is installing Plesk on your computer/server and installing WireGuard. {% stepper %} {% step %} ### Install Plesk {% embed url="" %} **If you are a beginner or just want default configuration, use this instead:** * Installation instructions for Plesk for Linux: [Installing Plesk for Linux in One Click](https://docs.plesk.com/en-US/obsidian/deployment-guide/plesk-installation-and-upgrade-on-single-server/1click-plesk-installation/installing-plesk-for-linux-in-one-click.76444/). * Installation instructions for Plesk for Windows: [Installing Plesk for Windows in One Click](https://docs.plesk.com/en-US/obsidian/deployment-guide/plesk-installation-and-upgrade-on-single-server/1click-plesk-installation/installing-plesk-for-windows-in-one-click.76448/). {% endstep %} {% step %} ### Set up WireGuard [install-wireguard](https://qubitvpn.gitbook.io/qubitvpn-docs/how-to-use/install-wireguard "mention") {% endstep %} {% step %} ### Sign into the [dashboard](https://dashboard.qubitvpn.com/) After your VPN Server is created, we will email you letting you know that your VPN Server is ready. Go to the [dashboard](https://dashboard.qubitvpn.com/) and log in using the same contact email you purchased with.

{% endstep %} {% step %} ### Verify Email You will receive an email from **Cloudflare** with the Subject **"Cloudflare Access login code for dashboard.qubitvpn.com"** with a verification code, please enter that code in the dashboard.

{% endstep %} {% step %} ### You're in the portal! You can use this portal to access your WireGuard client profiles/tunnels (using "Client Access").

{% endstep %} {% step %} ### Sign into your Client Access panel In the email that was sent notifying you that your server is ready, you will have temporary login credentials, please use those credentials to log in here. This is your contact email and a temporary password.

{% endstep %} {% step %} ### Multi-Factor Authentication Scan the QR Code on your phone (if you are logging in from your phone, click the link instead).

{% endstep %} {% step %} ### Connect to VPN Profile/Tunnel Press Connect

{% endstep %} {% step %} ### Download Click Download to import it into your computer/server's WireGuard App. If you don't know how to import it for your operating system, ask [ChatGPT](https://chat.openai.com/?q=Please%20provide%20short%20and%20easy%20to%20follow%20instructions%20on%20how%20to%20import%20a%20wireguard%20tunnel%20configuration%20file.%20First,%20ask%20for%20the%20operating%20system%20that%20plesk%20is%20running%20on%20and%20give%20steps%20for%20wireguard%20on%20that%20operating%20system.) (AI).

{% endstep %} {% step %} ### Allow the [Plesk ports](https://docs.plesk.com/en-US/obsidian/administrator-guide/plesk-administration/ports-used-by-plesk.64950/) on your [computer/server](https://qubitvpn.gitbook.io/qubitvpn-docs/how-to-use/allow-incoming-port-connection) {% endstep %} {% step %} ### Reconfigure Plesk Reconfigure Plesk to use the WireGuard IP {% tabs %} {% tab title="Linux" %} ```bash plesk repair all -y ``` {% endtab %} {% tab title="Windows" %} Run Plesk Repair Utility (usually in C:\Program Files (x86)\Plesk\admin\bin) Run CMD and then: ```batch cd C:\Program Files (x86)\Plesk\admin\bin plesk repair all -y ``` {% endtab %} {% endtabs %} {% endstep %} {% step %} ### Log into Plesk 1. 2. Use your SSH username and password

You may also log-in with a one-time link with this command: plesk login

{% endstep %} {% step %} ### Enter your Email and create a Password

{% endstep %} {% step %} ### Enter License Key Select "Proceed with a paid license" and enter the license key that was sent to your email after server provisioning. If the email doesn't contain a key, please contact us by email[^1] or by live chat (on our [website](https://qubitvpn.com/)), to claim your key.

{% endstep %} {% step %} ### Add VPN IP as a Trusted IP (to avoid issues later on) Go to (change "your-ip" with your actual IP). If this doesn't work, follow the steps below, if it does, skip to step 3. 1. Go to Tools & Settings > IP Address Banning (Fail2Ban)

2. Click on "Trusted IP Addresses" on top

3. Click on "Add Trusted IP" and add your WireGuard VPN Server IP (usually 10.253.0.1) and click "OK" when you're done.

4. Click on "Add Trusted IP" again and add your Tunnel Config IP (e.g. 10.253.0.7) and click "OK" when you're done.

{% endstep %} {% step %} ### IP Tracking and Security {% tabs fullWidth="false" %} {% tab title="How to choose" %} There are 2 ways to track real IPs. You may use *X-Forwarded-For* or *CF-Connecting-IP* (Cloudflare) within the website. This only works on some websites and may require a plugin. You can accomplish this on WordPress using a plugin like Solid Security. Or: You may do it for the whole website through settings. This will work on most if not all website types and does not require a plugin in most cases. Please choose the tab that fits with your preferred method. {% endtab %} {% tab title="Using X-Forwarded-For or CF-Connecting-IP" %} For website security (like a WordPress security plugin), use X-Forwarded-For (XFF) or CF-Connecting-IP. *Do **NOT** use X-Real-IP, X-Client-IP, Client-IP, or X-Cluster-Client-IP.* *Our personal favorite security plugin for WordPress is Solid Security. (We are not in any way affiliated or sponsored by Solid Security)* How to set this up in [Solid Security](https://wordpress.org/plugins/better-wp-security/): 1. Install [Solid Security](https://wordpress.org/plugins/better-wp-security/) 2. Go to Solid Security > Settings > Global Settings 3. Scroll Down to "IP Detection" 4. Select CF-Connecting-IP if using Cloudflare, if not, select X-Forwarded-For

5. Click "Check IP" and make sure that is your own IP (the IP you're accessing the website from). This should be the IPv6 or IPv4 from [here](https://whatismyipaddress.com/). If this shows "10.253.0.1" or something similar, you did something wrong. Please go back through the steps to see where you made an error. {% hint style="success" %} If this shows your personal/work or VPN (if using one) IP, then you are now successfully tracking real IPs. {% endhint %} {% endtab %} {% tab title="Whole Website (Recommended)" %} {% stepper %} {% step %} ### Go to your website > Hosting & DNS > Apache & nginx

{% endstep %} {% step %} ### Add these: In the "Additional directives for HTTP" and "Additional directives for HTTPS" boxes, enter: ``` SetEnvIf X-Forwarded-For ".*" forwarded CustomLog /var/log/apache2/access.log combined env=!forwarded ```

In the "Additional nginx directives" box, enter: ``` set_real_ip_from 0.0.0.0/0; real_ip_header X-Forwarded-For; ```

{% endstep %} {% step %} ### Success! {% hint style="success" %} Your personal/work or VPN (if using one) IP should now be tracked instead of the VPN Server IP. {% endhint %} {% endstep %} {% endstepper %} {% endtab %} {% endtabs %} {% endstep %} {% step %} ### Declutter with Power User View (Optional) Best for developers and web agencies. If you aren't planning to resell and want to declutter all the menu options, follow the steps below: 1. Click on "Change View" at the bottom of the your left hand menu

2. Click "Switch to Power User view"

3. Now you have a much simpler, decluttered menu!

{% endstep %} {% endstepper %}
[^1]: