disable port 443 for webgui

R

Robert Thomspon

Patron
Joined
Jun 24, 2017
Messages
338
SO, i assumed this was relatively easy but im guessing im missing a radio button click somewhere.

Ive set my webgui SSL connection to be 7443, however, when i go to 192.168.myip:443, it still directs to the webgui of TrueNAS. Can anyone tell me how to disable the use of port 443 by TrueNAS?
 
sretalla

sretalla

Powered by Neutrality
Moderator
Joined
Jan 1, 2016
Messages
9,700
Looks like this is what you want...
1643302424183.png
 
R

Robert Thomspon

Patron
Joined
Jun 24, 2017
Messages
338
sretalla said:
Looks like this is what you want...
View attachment 52615
Click to expand...
sort of the exact opposite of what i want :)
I DONT want HTTPS on the truenas (or, at least, i dont want it going to port 443... 2 slots above that, where you have 443 as the HTTPS port, you should just be able to change that and TrueNAS should stop listening on 443, but it doesnt.

If you set that 443 port to say, 444, you can still connect to 443 when you shouldnt be able to (please try and let me know if im wrong).
 
sretalla

sretalla

Powered by Neutrality
Moderator
Joined
Jan 1, 2016
Messages
9,700
What I was thinking about was the reference in the help text to the 1 year setting for the browser to remember the redirect. Maybe clear that site from the browser's cache or use another one to test.
 
R

Robert Thomspon

Patron
Joined
Jun 24, 2017
Messages
338
sretalla said:
What I was thinking about was the reference in the help text to the 1 year setting for the browser to remember the redirect. Maybe clear that site from the browser's cache or use another one to test.
Click to expand...
oh, i see where you were going with that. Yeah, i already tried other browsers and incognito modes... no joy, still accessed from 443
 
Cloudified

Cloudified

Dabbler
Joined
Jan 21, 2022
Messages
42
Robert Thomspon said:
oh, i see where you were going with that. Yeah, i already tried other browsers and incognito modes... no joy, still accessed from 443
Click to expand...
I hate to ask the obvious, but have you tried restarting the system after making the port number change just to see if it updates correctly after the services have restarted?
 
FrostyCat

FrostyCat

Explorer
Joined
Jan 4, 2022
Messages
79
It works on mine, this is what I have. Traefik is handling both 80 and 443.

1643318680239.png
 
R

Robert Thomspon

Patron
Joined
Jun 24, 2017
Messages
338
FrostyCat said:
It works on mine, this is what I have. Traefik is handling both 80 and 443.

View attachment 52621
Click to expand...
yeah, i have been testing to see if i can replicate before submitting it as a bug... for me, it doesnt take on a first reboot after setting it, but will after the 2nd or 3rd... id like to replicate the problem consistently before reporting it as a bug instead of a possible fluke on my end...
 
Ixian

Ixian

Patron
Joined
May 11, 2015
Messages
218
It's a whole lot simpler to just add another ip to Truenas and have Traefik or whatever ingress service you use listen on that. That's what I do.
 
J

Jip-Hop

Contributor
Joined
Apr 13, 2021
Messages
118
Ixian said:
It's a whole lot simpler to just add another ip to Truenas and have Traefik or whatever ingress service you use listen on that. That's what I do.
Click to expand...
Nice! Now I don't need to wait for Traefik to be up after a reboot to access the TrueNAS GUI on 443 xD I was making the TrueNAS GUI accessible again on 443 via Traefik (TrueCharts external-service). But no more :)
 
Ixian

Ixian

Patron
Joined
May 11, 2015
Messages
218
Yep, I don’t even use apps, my Compose setup works just fine, you can do the same with it, add an ip alias in Truenas and have Traefik bind to it. My containers are on separate internal bridges that Traefik proxies as needed.

I did need to script removing iptables=false in the Docker daemon (if you set, then unset the App pool it won’t overwrite it on boot, only if there’s an update) and I also added some shell commands to cleanly stop the containers on shutdown and bring them back up post init but if you know what you are doing rolling your own Compose setup is simple and easy.
 
Ixian

Ixian

Patron
Joined
May 11, 2015
Messages
218
I like the patch approach for daemon.json - cleaner.

It's really only necessary if you are attempting to run both your own Compose setup and still want to play around with Apps. That's because if the App pool is set/the K3s service(s) is running SCALE will reset the daemon.json file on each boot. If you disable the Apps/Kubernetes stuff (by un-setting the App pool) then it leaves things alone. It will also reset it if you update SCALE but updates are relatively infrequent and it's simple just to restore things the way you want after.

I prefer to leave the Kubernetes stuff disabled. Note that folks really need to know what they are doing with Docker if they go that way particularly when it comes to security, snapshots, container networking, and so on. I'm thinking of doing a mini-writeup on the process but will put a disclaimer up top that most users are better off going the App route, working with Truecharts, and so on.
 
You must log in or register to reply here.

Important Announcement for the TrueNAS Community.

The TrueNAS Community has now been moved. This forum will now become READ-ONLY for historical purposes. Please feel free to join us on the new TrueNAS Community Forums.

Related topics on forums.truenas.com for thread: "disable port 443 for webgui"

Similar threads

S
Latest Scale - OpenVPN port not accessible from network! Firewall? Potential Issue with Scale
Replies
0
Views
981
sagar5534
S
A
Using one IP for both TrueNas and Jail with NAT Port Forwarding
Replies
2
Views
3K
ddaenen1
D
D
TrueNAS SCALE Apps remote access using Cloudflare tutorial
2
Replies
21
Views
38K
stephen.dail
stephen.dail
Y
  • Locked
MOD - DO NOT USE THIS GUIDE - How to Set Up TrueNAS From Beginning to End - including secure remote access to files and Web GUI
2
Replies
29
Views
60K
Noodle42089
Noodle42089
M
Routing Problem FritzBox - TrueNAS Traefik
Replies
0
Views
1K
MjSmith
M
Top