NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

el_patron's avatar
el_patron
Tutor
May 02, 2020
Solved

how to block admin page from internet access..?

Hi there,

I have installed nextcloud on my readynas and opened it to the internet,

https://myDynDNS-Readynas

with the ports 443 and 80, installed a letsencrypt certificate for that, and can access the login page of nextcloud via

https://myDynDNS-Readynas/nextcloud/index.php/login

but by doing so, also the admin page of the NAS is now accessible from outside with

https://myDynDNS-Readynas/admin

 

can this somehow be separated, that only the nextcloud page is accessible from outside, but not the admin page..? Is there a smarter way to access the admin page only from the local net..?

 

Thank you!

 

  • StephenB's avatar
    StephenB
    May 02, 2020
    el_patron wrote:

     

    can this somehow be separated, that only the nextcloud page is accessible from outside, but not the admin page..? Is there a smarter way to access the admin page only from the local net..?

     

     

    Unfortunately not.

     

    el_patron wrote:

     

    https://myDynDNS-Readynas

    with the ports 443 and 80,

     

    Do you need port 80 forwarded?  443 would be all you'd need for https.

3 Replies

Replies have been turned off for this discussion
  • StephenB's avatar
    StephenB
    Guru - Experienced User
    May 02, 2020
    el_patron wrote:

     

    can this somehow be separated, that only the nextcloud page is accessible from outside, but not the admin page..? Is there a smarter way to access the admin page only from the local net..?

     

     

    Unfortunately not.

     

    el_patron wrote:

     

    https://myDynDNS-Readynas

    with the ports 443 and 80,

     

    Do you need port 80 forwarded?  443 would be all you'd need for https.

    • el_patron's avatar
      el_patron
      Tutor
      May 03, 2020

       

      StephenB wrote:

      Do you need port 80 forwarded?  443 would be all you'd need for https.

      at least I needed port 80 for getting the initial certificate from letsencrypt. But I think it is not longer needed for the renewal process... I will give it a try.

      • StephenB's avatar
        StephenB
        Guru - Experienced User
        May 03, 2020
        el_patron wrote:

         

        StephenB wrote:

        Do you need port 80 forwarded?  443 would be all you'd need for https.

        at least I needed port 80 for getting the initial certificate from letsencrypt. But I think it is not longer needed for the renewal process... I will give it a try.

        If you do need it, then you should make sure that http admin access is disabled on system->settings->services->http.

         

        It would be nice if you could limit https admin access to use only the secondary https port (or only 443).  Either would accomplish your purpose, and would be a pretty easy thing for Netgear to do.  You could put this into the idea exchange - though don't hold your breath waiting for them to get to it.

NETGEAR Academy

Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology! 

Join Us!

ProSupport for Business

Comprehensive support plans for maximum network uptime and business peace of mind.

 

Learn More