Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Remote Access of WEBGUI

    Scheduled Pinned Locked Moved webGUI
    3 Posts 2 Posters 553 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • slkamathS
      slkamath
      last edited by

      Hi,

      Just wanted to know how to give access to WebGUI from remotely? I wanted to allow only 4 MAC ID's to access this (Not IP Address based).

      So can anyone guide me how to do this settings?

      Thanks in advance.

      Lokesh Kamath.

      GertjanG 1 Reply Last reply Reply Quote 0
      • GertjanG
        Gertjan @slkamath
        last edited by Gertjan

        @slkamath said in Remote Access of WEBGUI:

        I wanted to allow only 4 MAC ID's to access this (Not IP Address based).

        pfSense uses a firewall that is IP based.
        Not MAC.

        Check it out yourself : make a NAT rule / WAN based firewall : no where you can enter a MAC.

        General TCP/IP knowledge : a MAC address will get removed after the first router ....only IP addresses travel over the Internet.
        So why filtering on MAC's if they do not exist in the packets ?

        Since mars, 2020, everybody discovered THE way to have a secured access. Pick one :

        d15d3502-57ac-4750-b028-561f7dc73fb0-image.png

        Upcoming is also Wireguard.

        Using a VPN access doesn't need MAC or IP filtering.

        Btw :
        It can be done : IP filtering.
        The device that needs an access should use some DynDNS client updater : as soon as it connects, it should update it's WAN IP.
        On pfsense, make a firewall rule that uses an alias table with the DynDNS hostname, the one that is updated by the client. This hostname will get 'refreshed' every 300 seconds on the pfSense side
        This means that the hostname == IP relation will be good after 300 seconds (max): the client can can connect, as its IP is known to pfSense firewall.
        This is, at best, rather cumbersome.

        Just use a VPN ....

        No "help me" PM's please. Use the forum, the community will thank you.
        Edit : and where are the logs ??

        slkamathS 1 Reply Last reply Reply Quote 0
        • slkamathS
          slkamath @Gertjan
          last edited by

          @gertjan Thank you so much for your kind information. Much appreciated.

          Good information you have shared. True, through VPN it is the best way & secure way to access.

          Once again thank you so much.

          Lokesh Kamath

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.