I can access the BVCP web interface on my FreeBSD workstation when I have the PF firewall disabled, but whenever I have PF firewall enabled and try to connect to a BVCP web interface, I get the following error: "Unable to connect to Backend module".
I would expect it to work if I open inbound port 443 for https and port 8086 for BVCP in my pf.conf, but something else needs to be configured, as well, to get it working. Does anyone have any idea what I need to fix in this pf.conf to allow access to the backend module?
I would expect it to work if I open inbound port 443 for https and port 8086 for BVCP in my pf.conf, but something else needs to be configured, as well, to get it working. Does anyone have any idea what I need to fix in this pf.conf to allow access to the backend module?
Code:
ext_if = "em0"
local_net = "192.168.50.0/24"
block all
pass in proto { tcp udp } to port { 80 443 8080 8086 41805 }
pass out proto { tcp udp } to port { 22 43 53 80 123 137 139 443 445 110 143 853 993 1194 8080 8086 41805 }
pass out inet proto icmp icmp-type { echoreq }
pass in inet proto icmp icmp-type { echoreq }
pass in on $ext_if proto tcp from any to any keep state
## Allow outbound OpenVPN traffic
pass out on $ext_if proto { tcp udp } from $local_net to any port { 443 1194 }
## Optional: Allow inbound OpenVPN traffic (only if needed)
# pass in on $ext_if proto { tcp udp } from any to $local_net port { 443 1194 }