Forum Discussion

DCL_SysAdmin's avatar
10 days ago
Solved

Is there a way to restrict access to the WebUI?

Hi all,

Some of our customers want to restrict access to the Web UI from the local networks of the socket.

However, even though I write LAN FW rules, the local IPs will respond to the HTTPs request from every network on the LAN port, even if that is a guest network.

Is there any way to restrict access to the WebUI?
If not, isn't such a configuration necessary? 

 

Thank you,

  • Hi michaelsaw,

    Please check the ticket 729554.

    They said that the access to the Socket WebUI from the local network 
    cannot be restricted by LAN firewall rules.

    And the RFE will be submitted.

    Thank you,

4 Replies

  • Hi DCL_SysAdmin, 

    Would you consider the LAN FW?
    https://support.catonetworks.com/hc/en-us/articles/10642755314205-Configuring-the-Socket-LAN-Firewall-Policy

    Cheers

  • Hi michaelsaw,

    Thank you for your reply,

    Yes, I already tried it.
    But, even if block the Interface's IP, the local client could access to the WebUI. 

     

    Cheers

    • michaelsaw's avatar
      michaelsaw
      Icon for Cato Employee rankCato Employee

      Hi DCL_SysAdmin, 

      Appreciate your feedback.
      Would be a good idea to submit a Support ticket to check on this?

      Thank you

      • DCL_SysAdmin's avatar
        DCL_SysAdmin
        Meteor

        Hi michaelsaw,

        Please check the ticket 729554.

        They said that the access to the Socket WebUI from the local network 
        cannot be restricted by LAN firewall rules.

        And the RFE will be submitted.

        Thank you,