OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • Archive »
  • 18.7 Legacy Series »
  • I feel like I'm missing some important point about certificates.
« previous next »
  • Print
Pages: [1]

Author Topic: I feel like I'm missing some important point about certificates.  (Read 756 times)

dwasifar

  • Jr. Member
  • **
  • Posts: 50
  • Karma: 3
    • View Profile
I feel like I'm missing some important point about certificates.
« on: November 15, 2018, 04:32:03 am »
I think I'm failing to understand how certs are supposed to work in OPNsense.

I have valid certs for my webservers, so I tried loading one of them into OPNsense.  It offers the cert to the web browser when I connect over LAN, but the browser complains because the cert is owned by [mydomain].com instead of 192.168.1.1.  I created a host override to allow connecting to OPNsense with [hostname].[mydomain].com instead of by local subnet IP address, but then OPNsense thinks it's a rebind attack and won't let me in. 

What am I missing here?
Logged

bartjsmit

  • Hero Member
  • *****
  • Posts: 1161
  • Karma: 138
    • View Profile
Re: I feel like I'm missing some important point about certificates.
« Reply #1 on: November 15, 2018, 10:03:36 am »
You're almost there :)

System, Settings, Administration, untick 'Disable DNS Rebinding Checks'

Bart...
Logged

  • Print
Pages: [1]
« previous next »
  • OPNsense Forum »
  • Archive »
  • 18.7 Legacy Series »
  • I feel like I'm missing some important point about certificates.
 

OPNsense is an OSS project © Deciso B.V. 2015 - 2021 All rights reserved
  • SMF 2.0.17 | SMF © 2019, Simple Machines
    Privacy Policy
    | XHTML | RSS | WAP2