OPNsense Forum
English Forums => General Discussion => Topic started by: Greg_E on February 26, 2024, 05:41:22 pm
-
I tried a search and I was getting all sorts of "firewall" hits, got frustrated and making this post.
Here's what I want to do: I want to be able to configure a port to have access to the web GUI without having that port be the LAN connection. I also want to be able to configure this from the CLI before I connect a computer to any ports. It seems that the 24.x installer starts as secure (no traffic on anything but WAN and LAN), at least from what I've seen so far.
Why? I'm working on getting my install routine down, and one of the things I want to do is create a management port, much like you might find in a high end switch. A port that is meant for local only direct attachment, has a DHCP server running, and can get directly to the web GUI without connecting to the LAN port first. Default on 24.x seems to only set access rules to the "default" LAN port, all additional ports configured through the CLI do not get the pass rules to contact the web server. Specifics for the hardware I'm using - HP T740, Intel i350 4 port card for WAN and LANs, Realtek built in port for management connection. I may do the same for an older HP T620+, need to see how well that processor handles the extra packages/plugins I want to test or run. I have a VGA and keyboard/mouse available for local control.
It's looking like I need to backup a config and just keep restoring this going forward, but a way to edit in the single rule needed would be nice if possible.