EdvBeratung
Dabbler
- Joined
- Oct 25, 2014
- Messages
- 12
Hi All,
Since FreeNAS doesn't support encrypted iSCSI traffic with Windows iSCSI initiator via IPSec I'm tunneling the traffic using SSH and that works great (running 100% stable since nearly two months).
This means the connection to the iSCSI portal is via localhost but I can't set 127.0.0.1 from the dropdown list, only 0.0.0.0 or the NIC address. As it is best practice to always reduce attack surface to a minimum I'd like to change the listening address of iSCSI to 127.0.0.1 but I can't figure out how to do that as it is missing in the dropdown list.
Any ideas anyone?
Thanks
Michael
Since FreeNAS doesn't support encrypted iSCSI traffic with Windows iSCSI initiator via IPSec I'm tunneling the traffic using SSH and that works great (running 100% stable since nearly two months).
This means the connection to the iSCSI portal is via localhost but I can't set 127.0.0.1 from the dropdown list, only 0.0.0.0 or the NIC address. As it is best practice to always reduce attack surface to a minimum I'd like to change the listening address of iSCSI to 127.0.0.1 but I can't figure out how to do that as it is missing in the dropdown list.
Any ideas anyone?
Thanks
Michael