If you can’t sign in to the Admin UI, you or someone in your organisation may have mistakenly removed access using Smoothwall access rules. For example, a rule to control traffic to internal services may be blocking traffic on the Web-based admin on HTTPS (441) service.
Regain access
- Sign in to the command line terminal:
- Using SSH on port 222.
- If SSH isn’t accessible, access the physical Smoothwall Appliance directly and sign in using the root user and password.
- Enter ‘setup’ and press Enter.
- Select Permit admin access.
- Select the interfaces to use to regain access, then press Enter. Choose one where you already know the IP address:
- All internal interfaces
- All external interfaces
- Select a specific interface
- Select Yes.
- Exit the setup menu.
- Sign in to the Admin UI.
Check the rule
- Go to Network > Firewall > Smoothwall access.
- You’ll see a new section added at the top of the table named Access rules added using the setup program. Within that section, you’ll find a rule with these settings:
- Name: Access rule added using the setup program
- Source IPs: Any
- Inbound interfaces: All internal interfaces, or whatever you selected in the root menu.
- Destination IPs: Any
-
Services:
- Cloud Filter Bypass (6150)
- DNS proxy (53)
- Other web access on HTTP (80)
- Other web access on HTTPS (442)
- SSH-based admin (222)
- Web-based admin on HTTP (81)
- Web-based admin on HTTPS (441)
- Groups: Any
- Action: Accept
- Log: X (No)
- Enabled: Tick (Yes)
- (Optional) Edit this rule according to your organisation’s security needs, such as to only allow Web-based admin so you can continue to access the Admin UI.