NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Disable admin access from outside of LAN
Hey
I have the following situation
I have my ReadyNas 528X behind an Netgear Orbi. The Orbi is set via dyndns to get access from everywhere.
I forwarded the https port only from the orbi to my ReadyNas (Port 443)
On my ReadyNas, I activated HTTP & HTTPS Services (Nothing changed there)
I also created a new user (UserA), which should the only be allowed to get acces via https side.
Then I created a new share and activated the services (SMB & HTTP)
And disallowed "everyone" access, but activated the new user (but I can't deactivate the admin).
Means two users are allowed. - Admin and UserA
When I now try to access the page from my mobile phone (WLAN switched off) with the following URL
https://MyDynDnsAddress/share -> I get a prompt, that I should log on (works fine)
when I enter:
https://MyDynDnsAddress -> Then I get redirected to the admin page. (https://MyDnDnsAddress/admin)
1) Is there a way to redirect to the share by default?
2) Is there a way to disallow access to the admin page?
3) Is an additional question: When I have subfolders in my share, then they are also not accessable with the UserA, all subfolders are forbidden - is this normal? (Means, when I access https://MyDynDnsAddress/share then I see all files and the folder structure. When I click on any folder, I get redirected https://MyDynDnsAddress/share/folder but it always is forbidden)
THX a lot in advance
2 Replies
Zero_G_ wrote:
2) Is there a way to disallow access to the admin page?
Unfortunately no. One option is to allow http remote access, but not https. That would be less secure for remote users, but would prevent admin access over the internet.
Zero_G_ wrote:
1) Is there a way to redirect to the share by default?
You can do this for http, but not https. Look in the http settings (system->settings->services)
Zero_G_ wrote:
3) Is an additional question: When I have subfolders in my share, then they are also not accessable with the UserA, all subfolders are forbidden - is this normal? (Means, when I access https://MyDynDnsAddress/share then I see all files and the folder structure. When I click on any folder, I get redirected https://MyDynDnsAddress/share/folder but it always is forbidden)
Try resetting the file and folder permissions for the share. Click on the share settings wheel, then "file access". There's a reset control there on the left.
When you change permissions (or owner/group), the change is only applied to the root. You need to click on reset to apply those changes to all the folders and files in the share.
I would imagine it can be done by directly editing one or more of the apache configuration files by restricting the IP range for access to the admin pages.. But the problem with that is that any access change you make in the GUI might overwrite your change. Plus, the ReadyNAS doesn't simply use the typical set of configuration files, so figuring out where to put it isn't a simple Google away.
I'm not sure of your end purpose, but this is a situation where a VPN sounds like a better direction to try.
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
