Messages

Thanks! Didn't think to look there, I guess I was assuming it would be under System:Settings:Administration.

I have the Business Edition user portal working, but how do I allow user login to the portal from WAN but allow admin login only from LAN side? Is this possible? I couldn't find a place where to set management networks.

I will limit access from WAN to user portal eventually after onboarding since it can't be setup to require OTP after the initial seed generation, but as an added measure I'd like to deny any admin user login from WAN altogether.

I got the Business Edition for the User Portal functionality. What's the currently recommended, most user friendly but still administratively flexible way to provide road warrior OpenVPN configuration and group based access?

I'm looking to have separated access for IT staff, regular employees and external contractors to different internal resources. User accounts will be in Active Directory.

I've used client specific overrides before with pfSense but found them to be cumbersome if there's more than a couple of them. Completely separate OpenVPN server instances seem overkill. Do OpenVPN Group aliases allow me to this simply based on OpenVPN interface access rules?

Any recommendations and best practices?