Forum Discussion

Meteor

24 days ago

Solved

Is there a way to restrict access to the WebUI?

Hi all,

Some of our customers want to restrict access to the Web UI from the local networks of the socket.

However, even though I write LAN FW rules, the local IPs will respond to the HTTPs request from every network on the LAN port, even if that is a guest network.

Is there any way to restrict access to the WebUI?
If not, isn't such a configuration necessary?

Thank you,

administration

network

DCL_SysAdmin
17 days ago
Hi michaelsaw,
Please check the ticket 729554.
They said that the access to the Socket WebUI from the local network
cannot be restricted by LAN firewall rules.
And the RFE will be submitted.
Thank you,

4 Replies

michaelsaw
Cato Employee
23 days ago
Hi DCL_SysAdmin,

Would you consider the LAN FW?
https://support.catonetworks.com/hc/en-us/articles/10642755314205-Configuring-the-Socket-LAN-Firewall-Policy

Cheers
DCL_SysAdmin
Meteor
18 days ago
Hi michaelsaw,
Thank you for your reply,
Yes, I already tried it.
But, even if block the Interface's IP, the local client could access to the WebUI.

Cheers
- michaelsaw
  Cato Employee
  18 days ago
  Hi DCL_SysAdmin,
  
  Appreciate your feedback.
  Would be a good idea to submit a Support ticket to check on this?
  
  Thank you
  - DCL_SysAdmin
    Meteor
    17 days ago
    Hi michaelsaw,
    Please check the ticket 729554.
    They said that the access to the Socket WebUI from the local network
    cannot be restricted by LAN firewall rules.
    And the RFE will be submitted.
    Thank you,

Forum Discussion

Is there a way to restrict access to the WebUI?

4 Replies

Recent Discussions

Cato SDP Client to be auto intelligent to login instead of manual logging

CASB Tech Hour Q&A

Does Cato perform application identification based solely on ports?

App catalog categorizations?

What is the optimal way to export the configuration of all Sockets?