I have been running FusionPBX for a while now with no issues, but the webportal has been locked down to external access. I have public SIP access for registration frontened by a kamailio server from there it forwards registration to FusionPBX. So FusionPBX has no External access at this point, but have the need to allow certain clients access to the portal. Is there any security best practices that I would need to implement to do this? I know that fail2ban has been removed as of the lastest version. Does the lastest version have any web security that I would need to implement? Does fusionpbx have MFA available? Basically I would like to get general security best practices for the web portal.