dch :flantifa: :flan_hacker:
boosted
I'm pleased to say I've been able to write a Tutorial series on how to get a quick-and-dirty implementation of Client Certificate Authentication using PFSense and HAProxy!
Feel free to have a read here:
https://seantodd.co.uk/series/client-certificate-authentication-in-pfsense-with-haproxy/
Just managed to get my first Client SSL authentication working with PFSense and HAProxy!
Getting to understand the ACL ordering was my biggest hurdle, but I can now reject access to my internal apps from the wider internet unless theyre using a client certificate. There's even a bypass for internal IP addresses so I don't need to resort to split-brained DNS!
I'm pleased to say I've been able to write a Tutorial series on how to get a quick-and-dirty implementation of Client Certificate Authentication using PFSense and HAProxy!
Feel free to have a read here:
https://seantodd.co.uk/series/client-certificate-authentication-in-pfsense-with-haproxy/
Just managed to get my first Client SSL authentication working with PFSense and HAProxy!
Getting to understand the ACL ordering was my biggest hurdle, but I can now reject access to my internal apps from the wider internet unless theyre using a client certificate. There's even a bypass for internal IP addresses so I don't need to resort to split-brained DNS!