OPNsense Forum

Archive => 17.1 Legacy Series => Topic started by: dpbklyn on May 02, 2017, 10:04:22 pm

Title: Restrict access To web server
Post by: dpbklyn on May 02, 2017, 10:04:22 pm

Hello and thank you in advance...

I am not sure what to search for so please excuse me if this has been covered.

I have a webserver to which I would like only one or two people to have access from outside the network.  Is it possible to restrict access to particular ports by Mac address or some other metric?

Although this server IS password protected, I am not crazy about having it hanging out there for the world to hack at.

Thank you,

dp

Title: Re: Restrict access To web server
Post by: fabian on May 03, 2017, 06:52:41 am

Quote from: dpbklyn on May 02, 2017, 10:04:22 pm

I have a webserver to which I would like only one or two people to have access from outside the network.  Is it possible to restrict access to particular ports by Mac address or some other metric?

The MAC address your appliance ALWAYS will see ist the one of your provider router or of the next hop (the provider itself)
Why not give them access over IPsec/OpenVPN to exactly this host?

Title: Re: Restrict access To web server
Post by: dpbklyn on May 03, 2017, 05:01:58 pm

Yes.  That was my next solution.

Thank you!