This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
admin-access [2023/06/23 19:36] – [Web Admin] -formatting hogwild | admin-access [2023/06/23 20:44] (current) – [SSL Certificate] -condense hogwild | ||
---|---|---|---|
Line 7: | Line 7: | ||
The Web Admin section has settings to control who can access FreshTomato' | The Web Admin section has settings to control who can access FreshTomato' | ||
| | ||
- | | + | |
**Local Access: | **Local Access: | ||
Line 60: | Line 60: | ||
**Theme UI:** This lets you choose the color scheme (theme) used for the web interface pages. (Default: Default). | **Theme UI:** This lets you choose the color scheme (theme) used for the web interface pages. (Default: Default). | ||
- | **Open Menus: | + | **Open Menus: |
===== SSH Daemon ===== | ===== SSH Daemon ===== | ||
Line 66: | Line 67: | ||
Secure SHell is a tunneling protocol that allows you to make secure local and remote connections to the FreshTomato router. With the help of the Dropbear service, it also allows you to make SSH connections //though //the router, to LAN client devices. Setings in this section let you enable or disable the SSH Daemon and the Dropbear daemon, and configure their operation. | Secure SHell is a tunneling protocol that allows you to make secure local and remote connections to the FreshTomato router. With the help of the Dropbear service, it also allows you to make SSH connections //though //the router, to LAN client devices. Setings in this section let you enable or disable the SSH Daemon and the Dropbear daemon, and configure their operation. | ||
- | **Enable at Startup:** Checking this starts the SSH Daemon when the router boots. (Default: Enabled). | + | **Enable at Startup: |
- | **Extended MOTD:** Checking this enables the Message of the Day function. This function displays a custom message when you first log in via Telnet. The message can be can be important information or updates about the system or just a personal greeting from the system administrator. | + | **Extended MOTD: |
\\ | \\ | ||
Line 78: | Line 79: | ||
**Remote Access: | **Remote Access: | ||
- | **Remote Forwarding: **Checking this enables the Dropbear service. This service/ | + | **Remote Forwarding: |
For example, let's say you want to be able to access a Windows PC on your LAN via Remote Desktop, but you don't want the security risk of opening up a port for RDP to the Internet via standard Port Forwarding. Instead, you can make an SSH connection into the router with an SSH port tunnel/ | For example, let's say you want to be able to access a Windows PC on your LAN via Remote Desktop, but you don't want the security risk of opening up a port for RDP to the Internet via standard Port Forwarding. Instead, you can make an SSH connection into the router with an SSH port tunnel/ | ||
- | **Port: **Here, | + | **Port: |
- | **Allow Password Login: **Checking this allows clients to login via SSH with only FreshTomato' | + | **Allow Password Login: |
- | **Authorized Keys:** Here you can enter one or more encryption keys which authorize an SSH client to access to the LAN. | + | **Authorized Keys: |
+ | |||
+ | **Stop Now:** Clicking this button immediately stops the SSH daemon. SSH will start again at the next bootup. After clicking, the button will then display as "Start Now". Clicking it will immediately start the SSH daemon. | ||
- | **Stop Now:** Clicking this button immediately stops the SSH daemon. SSH will start again at the next bootup. | ||
===== Telnet Daemon ===== | ===== Telnet Daemon ===== | ||
Line 111: | Line 113: | ||
Checking SSH limits the number of SSH connection attempts to number n at frequency f (in seconds). Checking Telnet limits the number of Telnet connection attempts to number n at frequency s (in seconds). | Checking SSH limits the number of SSH connection attempts to number n at frequency f (in seconds). Checking Telnet limits the number of Telnet connection attempts to number n at frequency s (in seconds). | ||
+ | |||
+ | \\ | ||
[[https:// | [[https:// | ||
+ | |||
===== Username/ | ===== Username/ | ||
- | The Username/ | + | You are strongly urged to change these from the default settings to keep the router and network secure. |
**Username: | **Username: | ||
Line 123: | Line 128: | ||
**Re-enter to confirm:** In this field, enter the password again to confirm it is correct. The password will be changed only when the text entered in this field and in the Password field match exactly. | **Re-enter to confirm:** In this field, enter the password again to confirm it is correct. The password will be changed only when the text entered in this field and in the Password field match exactly. | ||
+ | |||
+ | \\ | ||
{{: | {{: | ||
+ | \\ | ||
+ | \\ | ||