Setting pfSense router as secure password protected entry point in local network
-
Is it possible to set pfSense router to be secure password protected entry point in local network?
What I have in mind is: some service running in local server and I would like to access this service's GUI via WAN. I have setup HAProxy for HTTPS connection but I would like to setup login page/service so I would have to login with username and password (I would like this to happen on router). This service that I am running has password protection, but I think that isn’t secure (enough).
Is it possible to configure HAProxy or any other plugin to do what I have in mind?I am currently running pfSense 2.1.5 and planning to upgrade to 2.2
-
haproxy can do a little basic authentication.. but dont expect to much of it.. you will have to put lines like below into the advanced config sections. it might be enough for you purpose.?. let us know how it worked out.
http://serverfault.com/a/242936
userlist UsersFor_AcmeCorp user joebloggs insecure-password letmein backend HttpServers .. normal backend stuff goes here as usual .. acl AuthOkay_AcmeCorp http_auth(UsersFor_AcmeCorp) http-request auth realm AcmeCorp if !AuthOkay_AcmeCorp