Page 1 of 2 12 LastLast
Results 1 to 10 of 12
  1. #1
    Untangle Ninja Jim.Alles's Avatar
    Join Date
    Jul 2008
    Location
    Central PA
    Posts
    2,606

    Default Access to NGFW GUI admin page from all subnets?

    These two things might be related, or not.

    #1
    I have found an issue with v15.0, where I can only access the admin GUI page from an address on the Internal interface.
    My rules have been configured properly, and it was allowed before the update on this instance. I updated this from 14.1 through 14.2 early this morning, remotely over OpenVPN. At 14.2, The GUI page presented, no surprises.

    After the update to v15.0, OpenVPN re-connected with no issue. The default OpenVPN routing didn't get the page.

    The 172.16.176.1/24 OpenVPN subnet address on NGFW does not answer. If I use the 172.16.128.1/24 address on Internal, it does work. This may be something changed with the OpenVPN app implementation?
    The [Current Routes] table looks OK.


    #2
    A second instance, I have a routed instance inside of an edge NGFW (So double NAT) for testing.
    That inside instance of NGFW (v15.1):
    • I have Internet connectivity
    • It gets a DHCP lease.
    • The Access rule [Allow HTTPS on WANs] rule is enabled.

    From the edge NGFW (v15.0):
    • It can be pinged.
    • On the [Connection Test], port 443 is open

    I have refreshed the cache on the browser.
    I cannot reach test NGFW GUI at it's DHCP assigned address on the WAN; from the LAN of the edge NGFW
    Last edited by Jim.Alles; 04-14-2020 at 01:00 PM.

  2. #2
    Untangler jcoffin's Avatar
    Join Date
    Aug 2008
    Location
    Sunnyvale, CA
    Posts
    9,200

    Default

    1. Do you have the HTTPS port moved to another. It's working for me on 15.0 and 15.1.

    2. Are you accessing from a PC behind the internal UT?
    Attention: Support and help on the Untangle Forums is provided by
    volunteers and community members like yourself.
    If you need Untangle support please call or email support@untangle.com

  3. #3
    Untangle Ninja Jim.Alles's Avatar
    Join Date
    Jul 2008
    Location
    Central PA
    Posts
    2,606

    Default

    HTTPS ports, no I don't normally touch them. verified.
    The v15.1 Alpha hasn't been restored from anything, it is a clean install.

    On the internal v15.1, no not yet. just looking at the Chromium client.

    I am looking into TCPdumps, something is fishy.

    Also, refresh the above message, I am still editing it. I had to do a copy-paste to dump that text somewhere.

  4. #4
    Untangler jcoffin's Avatar
    Join Date
    Aug 2008
    Location
    Sunnyvale, CA
    Posts
    9,200

    Default

    Post your access rules.
    Attention: Support and help on the Untangle Forums is provided by
    volunteers and community members like yourself.
    If you need Untangle support please call or email support@untangle.com

  5. #5
    Untangle Ninja sky-knight's Avatar
    Join Date
    Apr 2008
    Location
    Phoenix, AZ
    Posts
    25,263

    Default

    Config -> Administration

    Did you put something in that restrict administration subnet box?
    Rob Sandling, BS:SWE, MCP
    NexgenAppliances.com
    Phone: 866-794-8879 x201
    Email: support@nexgenappliances.com

  6. #6
    Untangle Ninja Jim.Alles's Avatar
    Join Date
    Jul 2008
    Location
    Central PA
    Posts
    2,606

    Default

    Nope, that was clean, too Rob.
    I finally got back to this, and got in from a different machine.

    I was testing both systems from the same laptop.
    I guess I am going to rip into that to see what it might be.
    But it isn't like I haven't seen Windows 10 get it's shorts twisted up over networking. When was the last time I re-booted it???

    I think this will end up being one of those sheepish threads!
    Move along, nothing to see here.

    Thanks, everyone!
    Last edited by Jim.Alles; 04-14-2020 at 09:18 PM.

  7. #7
    Untangle Ninja sky-knight's Avatar
    Join Date
    Apr 2008
    Location
    Phoenix, AZ
    Posts
    25,263

    Default

    Nope, it's even simpler... it's the stupid cache on the web browser.

    From v14.2 to v15.0 every single browser I've had needed a cache flush before it would reconnect to the admin UI. The browser would just spin forever, and never let me log in. No actual errors on my end though... just hung browser.
    Jim.Alles likes this.
    Rob Sandling, BS:SWE, MCP
    NexgenAppliances.com
    Phone: 866-794-8879 x201
    Email: support@nexgenappliances.com

  8. #8
    Untangle Ninja Jim.Alles's Avatar
    Join Date
    Jul 2008
    Location
    Central PA
    Posts
    2,606

    Default

    Nope, I didn't get hung up on that one. <Ctrl>-F5 is my friend.
    It is some kind of routing issue, the packets aren't getting onto the wire.
    I haven't re-booted, yet!

  9. #9
    Untangle Ninja sky-knight's Avatar
    Join Date
    Apr 2008
    Location
    Phoenix, AZ
    Posts
    25,263

    Default

    Quote Originally Posted by Jim.Alles View Post
    Nope, I didn't get hung up on that one. <Ctrl>-F5 is my friend.
    It is some kind of routing issue, the packets aren't getting onto the wire.
    I haven't re-booted, yet!
    Fair warning, ctrl-f5 didn't work for me, I actually had to close all tabs and clear the cache manually for Firefox to get a clue anyway.
    Jim.Alles likes this.
    Rob Sandling, BS:SWE, MCP
    NexgenAppliances.com
    Phone: 866-794-8879 x201
    Email: support@nexgenappliances.com

  10. #10
    Newbie
    Join Date
    Apr 2020
    Posts
    8

    Default

    Quote Originally Posted by sky-knight View Post
    Nope, it's even simpler... it's the stupid cache on the web browser.

    From v14.2 to v15.0 every single browser I've had needed a cache flush before it would reconnect to the admin UI. The browser would just spin forever, and never let me log in. No actual errors on my end though... just hung browser.
    OMG you just saved me so much time, i just got my old untangle box from 4 years ago off the shelf, did upgrade after upgrade until it got to v15 and then just got spinner, even did factory reset! Multiple reboots. Clear cache - that worked.

    Note i was logged on the VGA console with the built in google browser that was the issue. Not good.
    Jim.Alles likes this.

Page 1 of 2 12 LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

SEO by vBSEO 3.6.0 PL2