OPNsense Forum

Archive => 18.7 Legacy Series => Topic started by: dwasifar on November 15, 2018, 04:32:03 am

Title: I feel like I'm missing some important point about certificates.
Post by: dwasifar on November 15, 2018, 04:32:03 am
I think I'm failing to understand how certs are supposed to work in OPNsense.

I have valid certs for my webservers, so I tried loading one of them into OPNsense.  It offers the cert to the web browser when I connect over LAN, but the browser complains because the cert is owned by [mydomain].com instead of 192.168.1.1.  I created a host override to allow connecting to OPNsense with [hostname].[mydomain].com instead of by local subnet IP address, but then OPNsense thinks it's a rebind attack and won't let me in. 

What am I missing here?
Title: Re: I feel like I'm missing some important point about certificates.
Post by: bartjsmit on November 15, 2018, 10:03:36 am
You're almost there :)

System, Settings, Administration, untick 'Disable DNS Rebinding Checks'

Bart...