Something is happening allowing access to login screen on WAN
-
soooo I'm using HAproxy to forward dns names to internal servers.
The last few days every once and awhile I would enter any of my dns records, site1.mywebsite.com, site2.mywebsite.com, and it will redirect to the login screen of my pfsense firewall. This happens if I am on WAN or LAN. Once I login I get an error message:
An HTTP_REFERER was detected other than what is defined in System -> Advanced (https://site1.mywebsite.com/). If not needed, this check can be disabled in System -> Advanced -> Admin.
How is this happening? I have firewall rules setup to not allow logins from WAN, also, why is the proxy dying so to speak?
-
Somehow you are hitting the GUI and not HAProxy.
If those are purely HTTP, it's possible your browser cached the HSTS info sent from the GUI redirect before you disabled it. Clear your browser cache and try it again.