How to block access to management Web UI to NSG50
sfalketrinity
Posts: 3
in Nebula
I have setup a server on our network and have a DNS address linked to our IP so external users can access this device. However, when users on the network go to the link they are redirected to the router management page. Users from outside the network are automatically pointed to the device I want it to. How can I stop the devices on the local network from automatically forwarding to this? How can I change the WebUI port to something else? We use Zyxel Nebula to manage our equipment.
0
All Replies
-
Dear @sfalketrinity , Here's an article for your reference:https://community.zyxel.com/en/discussion/4355/nebula-how-to-protect-my-network-nsg-by-using-firewall-rules-on-nsgAnd you can block the HTTP/HTTPS traffic which from the local network IP to NSG LAN IP. Thanks, Ivan0
-
I tried all of those methods and I am still faced with the same problem. We are able to access the server remotely just fine. However, when we try to access it using the Public IP address (which is tied to our domain) from the local network, it automatically redirects to the WebUI for the gateway. I even changed the port on the server to an arbitrary number and wasn't even able to get anything. Can I change the local WebUI management port so it doesn't interfere with 443 or 80?0
-
Yes you can.
Screenshots come from USG40 4.73 but the path should be similar; dont' forget to correctly configure security policy before proceed and download the latest configuration.
Bad configuration of the device can lock you out, without allowing you to connect; having an accessible configuration backup will speedup a lot the restore.
Access to "WWW"
Then manage the port used from the web management changing them for HTTPS and HTTP.
I'd disable HTTP access from WAN.
0 -
Since our equipment is Nebula cloud controlled, the opens that you show with the WWW settings aren't there. Is there an option for this in the Nebula controller?0
-
Hi @sfalketrinity,
So you have setup the NAT rule but when local client tries to access the server will redirect to NSG web GUI?
Could you enable Zyxel support for me to check the configuration? Also needs you provide the org name with me.
Please go to Help center > Support Request > Zyxel support access to enable and save.Zyxel Melen0
Zyxel Employee
Guru Member
Categories
- All Categories
- 431 Beta Program
- 2.6K Nebula
- 169 Nebula Ideas
- 112 Nebula Status and Incidents
- 6K Security
- 375 USG FLEX H Series
- 294 Security Ideas
- 1.5K Switch
- 78 Switch Ideas
- 1.2K Wireless
- 42 Wireless Ideas
- 6.7K Consumer Product
- 266 Service & License
- 409 News and Release
- 87 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.9K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 83 Security Highlight
