Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Limit access to admin page: www.mywebsite/administrator

    Scheduled Pinned Locked Moved
    Firewalling
    4
    4
    99
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      tina
      last edited by

      Good morning,
      How to limit access (except some Mac address) and protect the admin page of my website with pfsense
      Thanks

      S johnpozJ 2 Replies Last reply Reply Quote 0
      • S
        SteveITS Rebel Alliance @tina
        last edited by

        @tina You can block/allow access to the web server port.

        A URL would require something like haproxy because the firewall can’t see that.

        You could also connect via VPN and/or limit access on the web server itself.

        Pre-2.7.2/23.09: Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
        When upgrading, allow 10-15 minutes to restart, or more depending on packages and device speed.
        Upvote 👍 helpful posts!

        V 1 Reply Last reply Reply Quote 0
        • V
          viragomann @SteveITS
          last edited by

          @SteveITS said in Limit access to admin page: www.mywebsite/administrator:

          You could also connect via VPN and/or limit access on the web server itself.

          Yeah, I restricted access to the admin VPN tunnel pool in the web server settings and routed the website over the VPN.
          However, this presumes that you have a static WAN address or use the remote DNS on the VPN client with a host override for the website.

          1 Reply Last reply Reply Quote 0
          • johnpozJ
            johnpoz LAYER 8 Global Moderator @tina
            last edited by

            @tina where is the site hosted? On the public internet or behind pfsense. If behind pfsense is the site to be viewed by the public? The only way you can filter the /admin would be with a reverse proxy.

            If this is hosted on the public internet, pfsense really has nothing to do with that, sure you could proxy it so your users behind pfsense couldn't go to /admin - but anyone else on the internet could. etc..

            Prob need a bit more detail to figure out if what you can be done, and if so how, etc.

            An intelligent man is sometimes forced to be drunk to spend time with his fools
            If you get confused: Listen to the Music Play
            Please don't Chat/PM me for help, unless mod related
            SG-4860 24.03 | Lab VMs 2.7.2, 24.03

            1 Reply Last reply Reply Quote 0
            • First post
              Last post