Bug #16001
closed
No easy WebAdmin access from WAN feature
0%
Description
Dear pfSense team,
There is no easy feature to add the WebAdmin access from WAN.
If a NEW option is created (only in HTTPS), it is needed and must be linked to:
- https://pfsense/system_advanced_admin.php
- https://pfsense/firewall_rules.php?if=wan
Like the current WebAdmin access from LAN "Anti-Lockout Rule":
- https://pfsense/firewall_rules.php?if=lan
Of course, it must be a separate rule.
If the pfSense admin would like this HTTPS port, default 443 port or another one, for example, 444 port:
When a checkbox is enabled in https://pfsense/system_advanced_admin.php, it adds a WAN rule for this.
If the port is changed, the rule is updated, of course, only HTTPS, no HTTP.
Important: This feature needs a perfect description to explain what is this feature and the risk if the account password is not secure.
Can you add it?
Thanks in advance.
Updated by Neustradamus - 4 months ago
In more with this option, two forms:
- One with authorized IPv4
- One with authorized IPv6
WAN rules:
IPv4 TCP / "IP_SOURCE" / This Firewall (self) / PORT IPv6 TCP / "IP_SOURCE" / This Firewall (self) / PORT
Updated by Jim Pingle 4 months ago
- Category changed from Administrivia to Rules / NAT
- Status changed from New to Rejected
- Priority changed from High to Very Low
Administrators should never expose the firewall GUI to the WAN, so adding rules manually is as "easy" as it will be. Use a VPN to connect to the firewall first.