NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
ReadyNas 6.10.7
Hello and thank you for reading my question. To have one and only one share available on the wan, I have enabled https access for that share. Now I notice that also the admin GUI (https:..../...
Thank you,
Since apparently there is no intended configuration setting to do this, I have entered it manually in the configuration as follows. This assumes that your LAN ip addressrange starts with 192.168., if not you can change that in the instructions below. Suggestions to make this easier are welcome.
1. Create a new file /etc/apache2/conf-enabled/PasswordRecoveryLanOnly.conf containing these lines:
<Location /password_recovery/>
Order deny,allow
deny from all
allow from 192.168
</Location><Location /my_password>
Order deny,allow
deny from all
allow from 192.168
</Location>2. Edit the file /etc/frontview/apache/fv-admin.conf. In the <Location /admin> block mark two lines as comment by putting a # sign in front of it:
# Order allow,deny
# Allow from allAnd right below that add 3 lines:
Order deny,allow
deny from all
allow from 192.1683. Restart frontview with the command:
service apache2 restart
FWIW, it would be great if it were possible to limit access to the admin UI (including password recovery) to the local network. But unfortunately, Netgear doesn't have an option like that.
Sandshark's suggestions should get you started. If you get everything working the way you like, then I suggest posting exactly what you did - so others who want to do that can also implement your changes.
Another option that wouldn't require any mods is to use FTPS instead of HTTPS to access the share remotely. That is also encrypted, but would require people to use an FTP client like FileZilla or WinSCP.
Thank you,
Since apparently there is no intended configuration setting to do this, I have entered it manually in the configuration as follows. This assumes that your LAN ip addressrange starts with 192.168., if not you can change that in the instructions below. Suggestions to make this easier are welcome.
1. Create a new file /etc/apache2/conf-enabled/PasswordRecoveryLanOnly.conf containing these lines:
<Location /password_recovery/>
Order deny,allow
deny from all
allow from 192.168
</Location>
<Location /my_password>
Order deny,allow
deny from all
allow from 192.168
</Location>
2. Edit the file /etc/frontview/apache/fv-admin.conf. In the <Location /admin> block mark two lines as comment by putting a # sign in front of it:
# Order allow,deny
# Allow from all
And right below that add 3 lines:
Order deny,allow
deny from all
allow from 192.168
3. Restart frontview with the command:
service apache2 restart
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
