Make Pveproxy only listen on localhost

S

Stan Lee

New Member
Sep 26, 2016
1
0
1
124
I really don't like logging into the web ui using root or admin credentials over the network, so what I would like to do is have the web ui only listen on localhost, and use ssh port forwarding to connect to it.

So I've searched google and the forums and turned up nothing except some old posts which mentioned editing /etc/default/pveproxy (this does not exist on my installation, which is Proxmox Virtual Environment 4.2-18).

What is the preferred way of doing this with proxmox 4.2?

-Thanks
 
I've created an nginx reverse proxy for the webui and created the file /etc/default/pveproxy and configured it as follows:
ALLOW_FROM="127.0.0.1"
DENY_FROM="all"
POLICY="allow"

The proxy works and the web-ui listen only on local host but now my spice console and vnc connections doesn't work. If I delete the pveproxy file and issue the command pvecm updatecerts --force and reboot spice (but not vnc) starts to work through the reverse proxy.

Is the pveproxy file also limiting spice to localhost only?
 
You must log in or register to reply here.

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Quick Navigation

Home Get Subscription Wiki Downloads Proxmox Customer Portal About

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!
Community platform by XenForo® © 2010-2024 XenForo Ltd.
Top Bottom
Back