4. Restrict WEBgui to LAN only

Restrict WEBgui to LAN only

  • P

    new RC4 install.  3 interfaces:  WAN, LAN, OPT1(wireless.)

    I would like to block the ability to log into the WEBgui from the wireless network.

    I've tried blocking port 80 to the pfsense machine's IP, but that stops all web traffic as well.

    Anybody have a better idea?

    Thanks.

    0

  • I suspect your rule you created has as destination: *
    You need a rule that has as destination all IP's on which your pfSense is reachable.
    I would create an Alias which contains: "WAN-IP", "LAN-IP", "WLAN-IP" of the pfSense.
    Set the destination of your block rule to this alias.

    0

  • If you want to block certain access to the webGUI then you're thinking about security, right.
    Start with using HTTPS for pfSense administration and use a non standard port like :456.
    Block access to it from W-LAN and it won't affect regular web usage.

    0
Locked
 

Products

Applications

Support

Services

News

Resources

Company

Our Mission

As host of the pfSense open source firewall project, Netgate believes in enhancing network connectivity that maintains both security and privacy. We also believe everyone should be able to afford it.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2018 Rubicon Communications, LLC | Privacy Policy