nav[aria-label="Primary Navigation"] { padding: 0; & ul { list-style: none; width: 100%; display: flex; flex-direction: row; justify-content: start; align-items: start; gap: 30px; padding: 0; & li { margin: 0; } & ul li { list-style: none; } } }

Cato Cloud
- Discussions
- Best Practices
API
- Discussions
- Best Practices
Idea Hub
Community Help
- Discussions
Cato Partners
Cato SWIFTs
Discussions
Categories
Groups
Help

Is there a way to restrict access to the WebUI?

DCL_SysAdmin

Hi all,

Some of our customers want to restrict access to the Web UI from the local networks of the socket.

However, even though I write LAN FW rules, the local IPs will respond to the HTTPs request from every network on the LAN port, even if that is a guest network.

Is there any way to restrict access to the WebUI?
If not, isn't such a configuration necessary?

Thank you,

Find more posts tagged with

analytics

Spam

Accepted answers

DCL_SysAdmin

Hi michaelsaw,

Please check the ticket 729554.

They said that the access to the Socket WebUI from the local network
cannot be restricted by LAN firewall rules.

And the RFE will be submitted.

Thank you,

All comments

michaelsaw

Hi DCL_SysAdmin,

Would you consider the LAN FW?
https://support.catonetworks.com/hc/en-us/articles/10642755314205-Configuring-the-Socket-LAN-Firewall-Policy

Cheers

DCL_SysAdmin

Hi michaelsaw,

Thank you for your reply,

Yes, I already tried it.
But, even if block the Interface's IP, the local client could access to the WebUI.

Cheers

michaelsaw

Hi DCL_SysAdmin,

Appreciate your feedback.
Would be a good idea to submit a Support ticket to check on this?

Thank you

DCL_SysAdmin

Hi michaelsaw,

Please check the ticket 729554.

They said that the access to the Socket WebUI from the local network
cannot be restricted by LAN firewall rules.

And the RFE will be submitted.

Thank you,