PuTTY SSH - No Console Options
-
I've setup external access to the pfSense interface using a public key. I can access it from an external IP fine using PuTTY however I only have the generic linux based view...In Ubuntu I want to bind the localhost and access the actual GUI but for now this method will have to do.
same thing in ubuntu wsl2
-
update on this, I did get the localhost binding working now but I would be interested in knowing how to navigate to the console options through putty since I wont always have access to a Ubuntu instance.
-
A bit confused to what your asking exactly.
If you login as root/admin you would auto get the console menu.. If you login as some other account, then you would need to kick off the menu.. if you run /etc/rc.initial
If your wanting to connect via a tunnel down your ssh connection to the gui, not sure port your using for the gui 5554? I run mine on 8443 (https).. you would have to deal with any cert errors about sni you used, etc.
So here I created local binding -L to port 8443, and where that should go to down the tunnel, my pfsense IP 192.168.9.253 and what port. again 8443
Then hit that port on my local machine loopback (127.0.0.1) and you see I get my pfsense gui.
If you want to use localhost in your cmd that works too..
-
got it, thank you. I am doing the same as you but I disable the admin account for security and i also change my ports. ssh is now 222 and the admin interface is changed to 5554 with a binding to localhost. see below.
[2.4.5-RELEASE][@pfSense.localdomain]/home/: [2.4.5-RELEASE][@pfSense.localdomain]/home/: which /etc/rc.initial
[2.4.5-RELEASE][@pfSense.localdomain]/home/:: Too many arguments.
[2.4.5-RELEASE][@pfSense.localdomain]/home/: /etc/rc.initial
[2.4.5-RELEASE]@pfSense.localdomain]/home/: /etc/rc.initialNetgate SG-3100 - Serial: - Netgate Device ID:
*** Welcome to pfSense 2.4.5-RELEASE-p1 (arm) on pfSense ***
ofwdump: could not open /dev/openfirm: Permission denied
- Logout (SSH only) 9) pfTop
- Assign Interfaces 10) Filter Logs
- Set interface(s) IP address 11) Restart webConfigurator
- Reset webConfigurator password 12) PHP shell + pfSense tools
- Reset to factory defaults 13) Update from console
- Reboot system 14) Disable Secure Shell (sshd)
- Halt system 15) Restore recent configuration
- Ping host 16) Restart PHP-FPM
- Shell
Enter an option:
Ubuntu
poweruser@WindowsLaptop:~$ ssh -L 5554:localhost:5554 -p 222 @xxxxxx
[2.4.5-RELEASE][@pfSense.localdomain]/home/:this gives me the GUI in chrome as you have @ https://localhost:5554
-
You just disabled admin rather then deleting it? And I assume if you don't disable it you don't see that error?
I also assume you redacted the username from the above output rather than somehow using an empty user?
Steve
-
yeah its disabled and I redacted my new account name above. enabling the admin and generating a new key for it works normally as you explained. no restrictions
bolded text9