I think that is very useful. By the way, I do not understand why a bind to 127.0.0.1 makes it possible to contact on a vpn-port.
ah
Strange: on an other server in webmin.conf bind=127.0.0.1, restricted access via proxy webserver ánd access via vpn 10.203.111.2 is possible. On an other server bind=10.203.133.2 works. The only access is via VPN.
> 10.203.122.1 dev tun122 proto kernel scope link src 10.203.122.2 IP 10.203.112.2 is local on tun122. On other systems this runs good. When I remove 10.203.122.2 from bind= webmin runs. But then I can only log in via the restricted proxy webserver. It is important to have the possibilty to log in via the vpn.
10.203.122.1 dev tun122 proto kernel scope link src 10.203.122.2 IP 10.203.112.2 is local on tun122. On other systems this runs good. When I remove 10.203.122.2 from bind= webmin runs. But then I can only log in via the restricted proxy webserver. It is important to have the possibilty to log in via the vpn.
jaap@chanchala:~$ sudo ip link show [sudo] password for jaap: 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP mode DEFAULT group default qlen 1000 link/ether ... brd ff:ff:ff:ff:ff:ff altname enp0s3 3: tun122: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UNKNOWN mode DEFAULT group default...
## changed port=10000 root=/usr/share/webmin mimetypes=/usr/share/webmin/mime.types addtype_cgi=internal/cgi realm=Webmin Server logfile=/var/webmin/miniserv.log errorlog=/var/webmin/miniserv_error.log pidfile=/var/webmin/miniserv.pid logtime=168 ##ssl=1 ssl=0 no_ssl2=1 no_ssl3=1 ssl_honorcipherorder=1 no_sslcompression=1 env_WEBMIN_CONFIG=/etc/webmin env_WEBMIN_VAR=/var/webmin atboot=1 logout=/etc/webmin/logout-flag listen=10000 denyfile=\.pl$ log=1 ##blockhost_failures=5 ##blockhost_time=60 syslog=1...
Deleting the empty file /var/webmin/blocked does not help. It gets recreated. jaap@chanchala:~$ sudo ls -al /var/webmin/blocked -rwx------ 1 root root 0 Aug 13 19:50 /var/webmin/blocked jaap@chanchala:~$