Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    pfSense access to the web interface

    Scheduled Pinned Locked Moved General pfSense Questions
    4 Posts 2 Posters 640 Views 2 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B Offline
      bars
      last edited by

      Hello.
      Configuring vps.
      I installed pfSense in the virtual machine, and I'm trying to access the web interface.
      Vps in proxmox.
      The grid is for a virtual machine.
      Proxmox network config.

      auto vmbr0
iface vmbr0 inet static
       address 10.10.1.1/24
       gateway 10.10.1.1
       bridge-ports none
       bridge-stp off
       bridge-fd 0

auto vmbr1
iface vmbr1 inet static
       address 10.10.2.1/24
       bridge-ports none
       bridge-stp off
       bridge-fd 0

      Iptables rules.
      Forwarding the port.

      iptables -A POSTROUTING -s 10.10.2.0/24 -o eno1 -j SNAT --to-source 20.5.1.1 -t nat
iptables -t nat -I PREROUTING -i eno1 -p TCP -d 20.5.1.1/32 --dport 80 -j DNAT --to-destination '10.10.2.6:80'

      Wan interface vmbr0
      Lan interface vmbr1
      How to fix it?

      An HTTP_REFERER was detected other than what is defined in System > Advanced (http://20.5.1.1/index.php). If not needed, this check can be disabled in System > Advanced > Admin Access.
      stephenw10S 1 Reply Last reply Reply Quote 0
      • stephenw10S Offline
        stephenw10 Netgate Administrator @bars
        last edited by stephenw10

        When you are behind a port forward like that the webgui rejection the connection because it fails the referer check, the IP is not what was requested.

        At the console run: pfSsh.php playback disablereferercheck

        Steve

        B 1 Reply Last reply Reply Quote 1
        • B Offline
          bars @stephenw10
          last edited by

          @stephenw10
          Can you add referer exceptions?
          Disabling completely is not correct.

          1 Reply Last reply Reply Quote 0
          • stephenw10S Offline
            stephenw10 Netgate Administrator
            last edited by

            Yes, you can 'alternate host names' in Sys > Adv > Admin Access that the referer check will then accept.

            Steve

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.