Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    I'm an idiot

    General pfSense Questions
    7
    7
    2322
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B
      bcole8888
      last edited by

      I wanted to create an SSL cert on my pfsense box so my browser would trust the webgui.  I created an internal CA, an certificate, turned on https for the webgui.  But now neither Chrome nor IE, or Edge will let me login.  I get this in Chrome:

      _10.1.1.254 normally uses encryption to protect your information. When Google Chrome tried to connect to 10.1.1.254 this time, the website sent back unusual and incorrect credentials. This may happen when an attacker is trying to pretend to be 10.1.1.254, or a Wi-Fi sign-in screen has interrupted the connection. Your information is still secure because Google Chrome stopped the connection before any data was exchanged.

      You cannot visit 10.1.1.254 right now because the website sent scrambled credentials that Google Chrome cannot process. Network errors and attacks are usually temporary, so this page will probably work later._

      Is there anything I can do short of rebuilding pfSense?

      GertjanG NollipfSenseN 2 Replies Last reply Reply Quote 0
      • D
        dreamslacker
        last edited by

        Go to the console interface.

        Select "Set interface(s) IP addresses".
        Select "LAN".
        Set the IP to the same address as you are using.
        When prompted, choose not to use HTTPS.

        You should be able to access the WebGUI after that.

        1 Reply Last reply Reply Quote 0
        • jimpJ
          jimp Rebel Alliance Developer Netgate
          last edited by

          Or from a shell prompt, run:

          pfSsh.php playback generateguicert

          That will create a new self-signed certificate and activate it.

          Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

          Need help fast? Netgate Global Support!

          Do not Chat/PM for help!

          1 Reply Last reply Reply Quote 2
          • I
            istacey
            last edited by

            This post is deleted!
            1 Reply Last reply Reply Quote 0
            • GertjanG
              Gertjan @bcole8888
              last edited by

              @bcole8888 said in I'm an idiot:

              I wanted to create an SSL cert on my pfsense box so my browser would trust the webgui.  I created an internal CA, an certificate, turned on https for the webgui.  But now neither Chrome nor IE, or Edge will let me login.  I get this in Chrome:

              Keep in mind : browser do not trust any web server certificate. So Chrome, Edge, IE (serious ?) and Firefox will always bail out.
              But, they also have a list - on your device - with exceptions.

              Typically, this list contains 'base' or 'parent' certificates from the big corporations like Verisign, etc etc.

              When you create your own CA on pfSense, and derive a certificate from it, to be used for the https access of the GUI, you should not forget to add these to the list on your device. Now your browser will accept the certificate proposed by the GUI of Netgate.

              No "help me" PM's please. Use the forum, the community will thank you.
              Edit : and where are the logs ??

              1 Reply Last reply Reply Quote 0
              • NollipfSenseN
                NollipfSense @bcole8888
                last edited by

                @bcole8888 For some positive vibes, since you're using pfSense, you're NOT an idiot.

                pfSense+ 23.09 Lenovo Thinkcentre M93P SFF Quadcore i7 dual Raid-ZFS 128GB-SSD 32GB-RAM PCI-Intel i350-t4 NIC, -Intel QAT 8950.
                pfSense+ 23.09 VM-Proxmox, Dell Precision Xeon-W2155 Nvme 500GB-ZFS 128GB-RAM PCIe-Intel i350-t4, Intel QAT-8950, P-cloud.

                johnpozJ 1 Reply Last reply Reply Quote 2
                • johnpozJ
                  johnpoz LAYER 8 Global Moderator @NollipfSense
                  last edited by

                  You guys notice this thread is from 2017 ;) heheh spammer hit it and linked to some shit site.. Im going to lock it.

                  An intelligent man is sometimes forced to be drunk to spend time with his fools
                  If you get confused: Listen to the Music Play
                  Please don't Chat/PM me for help, unless mod related
                  SG-4860 23.09 | Lab VMs 2.7.1, 23.09

                  1 Reply Last reply Reply Quote 0
                  • johnpozJ johnpoz locked this topic on
                  • First post
                    Last post