Discussion · BT Free Social

Discussion

@GigaByte4711@whitespashe.uk · 3 days ago

Just managed to get my first Client SSL authentication working with PFSense and HAProxy!

Getting to understand the ACL ordering was my biggest hurdle, but I can now reject access to my internal apps from the wider internet unless theyre using a client certificate. There's even a bypass for internal IP addresses so I don't need to resort to split-brained DNS!

#sysadmin #haproxy #pfsense #homelab

🍱 Sean ☕

@GigaByte4711@whitespashe.uk replied · 3 days ago

I'm pleased to say I've been able to write a Tutorial series on how to get a quick-and-dirty implementation of Client Certificate Authentication using PFSense and HAProxy!

Feel free to have a read here:
https://seantodd.co.uk/series/client-certificate-authentication-in-pfsense-with-haproxy/

#sysadmin #haproxy #pfsense #homelab

Sean's Blog

Client Certificate Authentication in PFSense With HAProxy

Friendly Neighbourhood SysAdmin. I write about my homelab and home network.

dch :flantifa: :flan_hacker:

@dch@bsd.network replied · 3 days ago

@GigaByte4711 nice! I hope you can share some of these magic tips

BT Free Social

BT Free is a non-profit organization founded by @ozoned@btfree.social . It's goal is for digital privacy rights, advocacy and consulting. This goal will be attained by hosting open platforms to allow others to seamlessly join the Fediverse on moderated instances or by helping others join the Fediverse.

BT Free Social: About · Code of conduct · Privacy ·

Bonfire social · 1.0.1 no JS en

Automatic federation enabled