Accessing PFSENSE from External Network
-
I need to access my PFSENSE Box from an external network to perform remote administration of it while I'm not in the "office". Is this possible to do with PFSENSE and if so how do I do it?
Thanks in advanced
-
I change the default web gui port from 80 to 8080
then simple nat setting
then to access remote:
enter in url http://myipaddress:8080pfsense will then ask for your username and password
-
Are you mad?
HTTPS at minimum.
SSH tunnel is better but is more cumbersome to access all internal services.
VPN is almost certainly the right way of doing it.
NEVER remotely administer ANYTHING over plain HTTP.
-
Thanks Guys…That worked for me :)
-
Is there a tutorial anywhere with regards setting up a VPN connection? I am used to setting up Lan to Lan VPN's and client VPN's with draytek routers, but looking at the PFsense box has confused me a little!
-
Is there a tutorial anywhere with regards setting up a VPN connection? I am used to setting up Lan to Lan VPN's and client VPN's with draytek routers, but looking at the PFsense box has confused me a little!
There are examples of IPsec, OpenVPN, and PPTP on the doc wiki (see the link in my sig) and in the book (also linked in my sig).
-
Just a note - that "NAT" configuration is not needed - what's actually allowing access is the associated "pass 8080 to 192.168.1.1" firewall rule that gets made automatically when creating that NAT mapping.
I concur re: HTTP / HTTPS - it's generally a Very Bad Idea to send your credentials out in the open via plaintext, such as via HTTP or e-mail (SMTP, much server-to-server communication ends up unencrypted, likewise with client-to-server and vice-versa). It only takes one experience with someone using a packet sniffer to get your credentials nabbed.
-
Have you been able to get external access to your pfsense box to work via BETA verison. I haven't been able to as of yet… :(
-
Have you been able to get external access to your pfsense box to work via BETA verison. I haven't been able to as of yet… :(
It works fine, if your rules or VPN are configured correctly.
Given the age of this thread, you should start a new one for your issue if you are not able to solve it with the information already provided here.