Access webui need to open 443?
-
@nadvig23
No, the WebGUI is by default accessible from the LAN.Did you even enable HTTPS?
If you go through the LAN network configuration in the console, pfSense shows an URL. Copy and paste it into the browsers address line.
-
-
It gave me only the ip/24 of my interfaces
I have no url thereI’m in the consol
-
@nadvig23 try
https://docs.netgate.com/pfsense/en/latest/troubleshooting/connect-to-gui.htmlAnd a few of these:
https://docs.netgate.com/pfsense/en/latest/troubleshooting/locked-out.html -
Ok now i have the url showed on the console
Http://192.168.1.200Didn’t ask me to activate https
Now on my laptop on the Lan i have configured for now ip dhcp with 192.168.1.1 as gateway
Go to http://192.168.1.200 nothing!!!
I have check the cable and the switch everything is ok
-
@nadvig23 if the pfSense LAN IP is .200 then why is .1 the gateway ? Do you have a second device providing DHCP?
-
-
It’s working!!! I can access webui from a pc on the Lan!!! I think it was because i didn’t put the 192.168.1.1 as dns on the laptop while trying to access the webui
But since lastnight i got network unreacheable the wan is dhcp detected the ip from my Isp but i can’t ping 8.8.8.8 From the console . Before the ping 8.8.8.8 was working. I check the cable and my isp everything is ok
-
@nadvig23
Try to ping from pfSense WebGUI itself. Diagnostic > Ping
Is this successful? -
-
@nadvig23
So presumably your outbound NAT is not working. Firewall > NAT > Outbound
Is it in automatic mode?
Did you change something or disabling NAT in the System > Advanced settings.Is your WAN set properly? Status > Interfaces
-
Outbound - automatic
I have not yet change something -
In status interfaces
Wan / rl0- status up dhcp
Lan / re0 : up 192.168.1.1
-
I have change my switch (it was a manageable switch …. Weird cannot change the ip gateway for the new one 192.168.1.1) so with the new netgear switch (not manageable this one) now;
Webui Diagnostics Ping:
Host 8.8.8.8
Source wan or lan is 0% lost
So for now this is workingBut the lan pc cannot acces Internet i don’t go out!
Maybe it’s because i have to add firewall rules?
-
@nadvig23 LAN has an allow to any rule out of the box. If that was removed then yes a rule is needed for DNS and Internet. All Interfaces have a hidden deny all rule.
-
I have done no change yet
-
If the rules by default :
Firewall- rules - lan:
Default allow Lan to any ruleWill permit to my laptop from the Lan to go out well i can’t go out to internet
My laptop is 192.168.1.99 with gateway and dns 192.168.1.1
I have put this Mac addr and ip of this laptop in Dhcp server- static mapping…. -
@nadvig23 said in Access webui need to open 443?:
Webui - diagnostics- ping:
Yes !
Host 8.8.8.8
Source wanNo!
Host 8.8.8.8
Source LanI was working on a problem router today that I think has a bad WAN port. I reinstalled, and I had this behavior until I finished the setup wizard. I don't recall having to do that in the past.
You might reset to factory defaults and start over just to see.
-
J jimp moved this topic from Problems Installing or Upgrading pfSense Software on
-
hello i was in vacation....
i have bought Netgate sg-2100...it is really great! my network is working now!
just a question...can i plug the wifi router (netgear) in the LAN2 port of Netgate??
thanks -
@nadvig23 you can use any port. On the 2100 the 4 LAN ports are a switch.
-
Or if you want the WIFI AP on a different subnet so you can filter traffic differently you can set on the ports to be a discrete interface:
https://docs.netgate.com/pfsense/en/latest/solutions/netgate-2100/configuring-the-switch-ports.htmlSteve
