Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
8624
Views
10
Helpful
8
Replies

expressway-e Web interface (over HTTPS)

Go to solution
turnerdave1
Level 1
Level 1

‎01-06-2016 01:33 PM - edited ‎03-18-2019 05:23 AM

Hi

So I've disable Web interface (over HTTPS) thinking that I could access it via http, but no, so now I cant login, is there anyway to enable it via ssh or the console.

thanks

Dave

Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Patrick Sparkman
VIP Alumni
VIP Alumni

‎01-06-2016 02:25 PM

You can turn it back on using SSH, must restart the Expressway after you make the change for it to take effect, the command is:

xConfiguration Administration HTTPS Mode: On

Note, the API commands are documented near the end of the the admin guides.

View solution in original post

Go to solution
Patrick Sparkman
VIP Alumni
VIP Alumni
In response to turnerdave1

‎01-06-2016 02:54 PM

Best solution would to not have HTTP/S open on your external firewall.  If that isn't an option, you might be able to use the firewall functions of the Exresssway, located under System > Protection > Firewall rules.

View solution in original post

0 Helpful
8 Replies 8

Go to solution
Patrick Sparkman
VIP Alumni
VIP Alumni

‎01-06-2016 02:25 PM

You can turn it back on using SSH, must restart the Expressway after you make the change for it to take effect, the command is:

xConfiguration Administration HTTPS Mode: On

Note, the API commands are documented near the end of the the admin guides.

Go to solution
turnerdave1
Level 1
Level 1
In response to Patrick Sparkman

‎01-06-2016 02:47 PM

Thanks Patrick

your a life saver, just another question, is it possible to disable https for external access, the reason is I don't want public users trying to access the admin side.

thanks

0 Helpful

Go to solution
Patrick Sparkman
VIP Alumni
VIP Alumni
In response to turnerdave1

‎01-06-2016 02:54 PM

Best solution would to not have HTTP/S open on your external firewall.  If that isn't an option, you might be able to use the firewall functions of the Exresssway, located under System > Protection > Firewall rules.

0 Helpful

Go to solution
Vinod.s
Level 3
Level 3
In response to Patrick Sparkman

‎04-28-2020 06:39 AM

Hello Patrick,

 

How this Firewall rule feature will works for EXP-E to disable Web access via Internet.

I means what should i filled in -  Interface , Ip address , Prefix , Service , action .

 

Thanks in advance .

0 Helpful

Go to solution
cogden
Level 1
Level 1
In response to Vinod.s

‎01-14-2021 10:44 AM

Did you ever figure this out? I have the same challenge and trying to figure out the best method to disable HTTPS access from the External interface on ExpresswayE.
Chris

0 Helpful

Go to solution
Roger Kallberg
VIP
VIP
In response to cogden

‎01-14-2021 11:32 AM

What reason is it for you to have HTTP/S allowed in the firewall rule set for the internet connection to the E expressway?



Response Signature


0 Helpful

Go to solution
cogden
Level 1
Level 1
In response to Roger Kallberg

‎01-14-2021 11:39 AM

No good reason, from what I can make out. It's a client's FW, I have no responsibility and I believe they have allowed additional ports (other than 8443 and 5061) such as 443 'open' to the big bad internet, so I have advised them to block this on their FW, but if there a way to easily configure this on the Expressway E - I am open to the exact details or point me to where in the Admin Guide, etc.

0 Helpful

Go to solution
Roger Kallberg
VIP
VIP
In response to cogden

‎01-14-2021 12:22 PM

From a security standpoint it is never advised to open more ports then what’s needed as a bare minimum to enable the service. Any additional port(s) opened opens up for a larger attack surface.



Response Signature


0 Helpful
Customers Also Viewed These Support Documents