Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Blocking webGUI access from outside

    Scheduled Pinned Locked Moved webGUI
    11 Posts 4 Posters 2.2k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • D
      doktornotor Banned
      last edited by

      It's blocked by default. Dunno what you are doing there, and from the looks at all that useless/duplicate OpenVPN/IPsec stuff there, you don't have a clue either.

      1 Reply Last reply Reply Quote 0
      • Y
        yodaphone
        last edited by

        ok genius, not all like you were born with pfsense in their mouth.

        the 1st rule in WAN clearly says ports 443 etc are blocked. then how come i can still access it?

        1 Reply Last reply Reply Quote 0
        • Y
          yodaphone
          last edited by

          @doktornotor:

          It's blocked by default. Dunno what you are doing there, and from the looks at all that useless/duplicate OpenVPN/IPsec stuff there, you don't have a clue either.

          and FYI, i set these rules AFTER i found out that i was able to access it from the web. so i do have some clue, not as pompous as yours though

          1 Reply Last reply Reply Quote 0
          • KOMK
            KOM
            last edited by

            What is 10.10.10.1?  Why do you have a NAT rule forwarding 10.10.10.1:443 to 127.0.0.1:8443?  It looks like a pfBlocker rule but I can't say for sure.  If you have WebGUI listening on a port that you're trying to forward then the result is that WebGUI gets forwarded.  Move WebGUI to a different port or stop forwarding 443.

            1 Reply Last reply Reply Quote 0
            • Y
              yodaphone
              last edited by

              @KOM:

              What is 10.10.10.1?  Why do you have a NAT rule forwarding 10.10.10.1:443 to 127.0.0.1:8443?  It looks like a pfBlocker rule but I can't say for sure.  If you have WebGUI listening on a port that you're trying to forward then the result is that WebGUI gets forwarded.  Move WebGUI to a different port or stop forwarding 443.

              Yes it a pfblocker rule. will try moving webgui to another port & see

              1 Reply Last reply Reply Quote 0
              • Y
                yodaphone
                last edited by

                @KOM:

                What is 10.10.10.1?  Why do you have a NAT rule forwarding 10.10.10.1:443 to 127.0.0.1:8443?  It looks like a pfBlocker rule but I can't say for sure.  If you have WebGUI listening on a port that you're trying to forward then the result is that WebGUI gets forwarded.  Move WebGUI to a different port or stop forwarding 443.

                thanks. tried that & that didnt work. So just reset the firewall & re-did the setup. that worked. ::) :o

                1 Reply Last reply Reply Quote 0
                • KOMK
                  KOM
                  last edited by

                  Resetting the states might have done the same thing without reinstalling, but at least it's working.

                  1 Reply Last reply Reply Quote 0
                  • Y
                    yodaphone
                    last edited by

                    @KOM:

                    Resetting the states might have done the same thing without reinstalling, but at least it's working.

                    yup, but definitely something i messed up with. since i'm new to this, i was learning stuff i tried things. anyway this is for a home setup, so no one yelled. ;D

                    1 Reply Last reply Reply Quote 0
                    • chpalmerC
                      chpalmer
                      last edited by

                      If you are trying to access from your own LAN then nothing you put in your WAN rules will affect that.

                      Triggering snowflakes one by one..
                      Intel(R) Core(TM) i5-4590T CPU @ 2.00GHz on an M400 WG box.

                      1 Reply Last reply Reply Quote 0
                      • Y
                        yodaphone
                        last edited by

                        @chpalmer:

                        If you are trying to access from your own LAN then nothing you put in your WAN rules will affect that.

                        i am not. i tried it from outside the network from work. the pfsense is at home. But its resolved anyway

                        1 Reply Last reply Reply Quote 0
                        • First post
                          Last post
                        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.