Allow access to pfSense itself only via VPN - but not from WAN - on a VPS!
-
Dear guys,
I just ordered a small vps and installed pfsense. I linked this pfSense via OpenVPN with my homelab.
The VPS has only one nic interface.At the beginning, I would like to block all access to pfSense GUI itself from the internet and allow only connections to pfsense itself coming via the openvpn tunnel.
I'm a bit of stuck because all the pfSense machines I configured so far had at least two ethernet interfaces (one for WAN and one for LAN) so it was easy to restrict access to pfSense itself to LAN interface - and block traffic from WAN!
Is there any recommended solution how to block access from WAN and allow it from OpenVPN tunnel although the VPS has only one ethernet interface? Do I have to try it with Virtual IPs? VLANs?
Thank you guys!
-
@scampicfx did you ever figure this out and if so what did you do?
-
I wasn't able to solve it. Therefore I ordered a VPS with two NICs. I used one NIC for WAN and the other one for LAN ;)
-
@scampicfx It might be helpful for others if you provided a guide how you accomplished what you did.
-
There are providers in the web which allow the usage of virtualized NICs. In this case, it is easy because you can clearly assign one NIC as WAN interface to your VM and one NIC as LAN interface to your VM.
This means everything is very similar to a setup which you would do when doing it at a machine locally.The only task for you is to find a provider which allows the usage of virtualized NICs. But there are many of them in the web!