× NETGEAR will be terminating ReadyCLOUD service by July 1st, 2023. For more details click here.
Orbi WiFi 7 RBE973
Reply

Re: how to block admin page from internet access..?

el_patron
Tutor

how to block admin page from internet access..?

Hi there,

I have installed nextcloud on my readynas and opened it to the internet,

https://myDynDNS-Readynas

with the ports 443 and 80, installed a letsencrypt certificate for that, and can access the login page of nextcloud via

https://myDynDNS-Readynas/nextcloud/index.php/login

but by doing so, also the admin page of the NAS is now accessible from outside with

https://myDynDNS-Readynas/admin

 

can this somehow be separated, that only the nextcloud page is accessible from outside, but not the admin page..? Is there a smarter way to access the admin page only from the local net..?

 

Thank you!

 

Model: ReadyNAS-OS6|, RN31400|ReadyNAS 300 Series 4- Bay (Diskless)
Message 1 of 4

Accepted Solutions
StephenB
Guru

Re: how to block admin page from internet access..?


@el_patron wrote:

 

can this somehow be separated, that only the nextcloud page is accessible from outside, but not the admin page..? Is there a smarter way to access the admin page only from the local net..?

 

 


Unfortunately not.

 


@el_patron wrote:

 

https://myDynDNS-Readynas

with the ports 443 and 80,

 


Do you need port 80 forwarded?  443 would be all you'd need for https.

View solution in original post

Message 2 of 4

All Replies
StephenB
Guru

Re: how to block admin page from internet access..?


@el_patron wrote:

 

can this somehow be separated, that only the nextcloud page is accessible from outside, but not the admin page..? Is there a smarter way to access the admin page only from the local net..?

 

 


Unfortunately not.

 


@el_patron wrote:

 

https://myDynDNS-Readynas

with the ports 443 and 80,

 


Do you need port 80 forwarded?  443 would be all you'd need for https.

Message 2 of 4
el_patron
Tutor

Re: how to block admin page from internet access..?

 


@StephenB wrote:

Do you need port 80 forwarded?  443 would be all you'd need for https.


at least I needed port 80 for getting the initial certificate from letsencrypt. But I think it is not longer needed for the renewal process... I will give it a try.

Message 3 of 4
StephenB
Guru

Re: how to block admin page from internet access..?


@el_patron wrote:

 


@StephenB wrote:

Do you need port 80 forwarded?  443 would be all you'd need for https.


at least I needed port 80 for getting the initial certificate from letsencrypt. But I think it is not longer needed for the renewal process... I will give it a try.


If you do need it, then you should make sure that http admin access is disabled on system->settings->services->http.

 

It would be nice if you could limit https admin access to use only the secondary https port (or only 443).  Either would accomplish your purpose, and would be a pretty easy thing for Netgear to do.  You could put this into the idea exchange - though don't hold your breath waiting for them to get to it.

Message 4 of 4
Top Contributors
Discussion stats
  • 3 replies
  • 1697 views
  • 1 kudo
  • 2 in conversation
Announcements