Lighttpd not listening on WG interface at boot

arkanoid · July 02, 2024, 12:13:35 PM

Hello

I want to have opnsense web config served on LAN and WG interfaces, and leave WAN for haproxy, but if a wireguard interface is selected in "System: Settings: Administration" as listening interface for HTTPS it is ignored at boot, but it works when applied manually after boot.

"sockstat -4 -l" shows that lighttps is NOT listening on wireguard interface after boot

So I have a configuration that works before rebooting, and works again after boot if and only if I reapply the very same listening knterfaces preferences.

how can I fix this?

Thanks

Monviech (Cedrik) · July 02, 2024, 12:38:28 PM

Well, yeah, as stated in the docs.

https://docs.opnsense.org/manual/settingsmenu.html#listen-interfaces

arkanoid · July 03, 2024, 01:20:41 PM

Thanks for the answer, you're right.

I give up with the idea to serve webconfig internally on port 443

thanks

Monviech (Cedrik) · July 03, 2024, 01:44:19 PM

You could, by reverse proxying it.

For example with Caddy.

https://docs.opnsense.org/manual/how-tos/caddy.html#reverse-proxy-the-opnsense-webgui

But I'm sure you can also reverse proxy it someway with HA Proxy.

Lighttpd not listening on WG interface at boot

arkanoid

July 02, 2024, 12:13:35 PM

Monviech (Cedrik)

July 02, 2024, 12:38:28 PM #1

arkanoid

July 03, 2024, 01:20:41 PM #2

Monviech (Cedrik)

July 03, 2024, 01:44:19 PM #3