Page 2 of 4 FirstFirst 1234 LastLast
Results 11 to 20 of 39

Thread: Crossing LANs

  1. #11
    Master Untangler
    Join Date
    Dec 2014
    Posts
    117

    Default

    Please see my previous post - Forward Filter Rules

  2. #12
    Master Untangler Kyawa's Avatar
    Join Date
    Dec 2016
    Location
    Maryland
    Posts
    199

    Default

    Thanks. So would it be the same info that I have in Input Filter but create a Forward Filter? This is good info. I was basing my Input Filter on what the guys I subbed to on the install of my customer's other location so I suspect it isn't working there either.

  3. #13
    Master Untangler
    Join Date
    Dec 2014
    Posts
    117

    Default

    Yeah same rule but in the forward filter rules section. Let us know if that resolves your current issue as it should there. Thank you.

  4. #14
    Master Untangler Kyawa's Avatar
    Join Date
    Dec 2016
    Location
    Maryland
    Posts
    199

    Default

    Thanks a million. Untangle support is top notch.

  5. #15
    Master Untangler Kyawa's Avatar
    Join Date
    Dec 2016
    Location
    Maryland
    Posts
    199

    Default

    I'm on the 10.x subnet and can access and login to the u50w, which is 192.168.2.x. I disabled the Input Filter.
    Attached Images Attached Images

  6. #16
    Master Untangler Kyawa's Avatar
    Join Date
    Dec 2016
    Location
    Maryland
    Posts
    199

    Default

    Quote Originally Posted by dmorris View Post
    • Allow HTTPS on WANs - enable this rule if you would like HTTPS access externally.
    Ok, so I have the "Allow HTTPS on WANs" enabled. Would this be allowing be to access the device even though I'm not external?

  7. #17
    Untangle Ninja sky-knight's Avatar
    Join Date
    Apr 2008
    Location
    Phoenix, AZ
    Posts
    21,266

    Default

    Yes, it opens the door to remote administration for all devices to connect to any IP address on a WAN interface.

    Where the connection comes from is irrelevant.
    Kyawa likes this.
    Rob Sandling, BS:SWE, MCP
    NexgenAppliances.com
    Phone: 866-794-8879 x201
    Email: support@nexgenappliances.com

  8. #18
    Master Untangler Kyawa's Avatar
    Join Date
    Dec 2016
    Location
    Maryland
    Posts
    199

    Default

    Ok. Thanks. However, I don't think I'm entering from the WAN interface. I'm entering the local IP (192.168.2.200) in a browser and connecting. I'm afraid that someone in the other location could simply do the same. Everything is password protected but still.

  9. #19
    Untangle Ninja sky-knight's Avatar
    Join Date
    Apr 2008
    Location
    Phoenix, AZ
    Posts
    21,266

    Default

    HTTPs access is always available on non-WAN interfaces.

    Disabling it is possible, but dangerous.

    HTTP and HTTPs management interfaces on the inside are where the block pages come from, Untangle cannot work properly if they are sealed.

    Use a strong password.
    Kyawa likes this.
    Rob Sandling, BS:SWE, MCP
    NexgenAppliances.com
    Phone: 866-794-8879 x201
    Email: support@nexgenappliances.com

  10. #20
    Master Untangler Kyawa's Avatar
    Join Date
    Dec 2016
    Location
    Maryland
    Posts
    199

    Default

    Thanks. So it's really not possible to keep people who are connected to Eth3 with a subnet of 10.1.10.x from accessing devices on Eth2 with a subnet of 192.168.2.x? Thanks again.

Page 2 of 4 FirstFirst 1234 LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

SEO by vBSEO 3.6.0 PL2