Trialing TrueNAS - GUI settings appear broken

Hi there! Learning about TrueNAS in my homelab as a potential option for our office, loving it so far. I have a question about the GUI network settings.

Situation:

Part of our routine SOP at work is to limit sensitive ports (like the admin GUI) to SSH forwarding or Teleport. Getting the GUI over SSH worked as expected:

Host truenas-sandbox
	#...
	LocalForward 8080 127.0.0.1:80

However, when I went to go change the bind addresses via System → General Settings → GUI, the settings would not allow any changes.

There is only one option in each of the Web Interface Address settings for IPv4 and IPv6. Deselecting it gives an error, and does not let me type anything in.

(I have screenshots, but it won’t let me upload them in this post, nor link them from imgur or etc. I’ll see if it lets me do that later.)

Questions:

  1. I had intended to set these to loopback, 127.0.0.1 and ::1 respectively, but it won’t let me. I assume I’m missing something obvious, what should I do?

  2. Request for advice: is interacting with a CLI a good idea, or should I stick to the GUI? I had thought to maybe just throw iptables at this, but I noticed a warning in the documentation for example that CLI changes to the experimental Instances feature may be lost, which made me hesitate to just throw iptables at it or etc.

System info:

As requested by the seeking help guide thread:

TrueNAS Version: SCALE / Community, 25.04.0
Installation Type: new installation non-production.
Virtualization: No, bare metal (consumer hardware)
Boot Pool Location: NVME drive

Motherboard Model: Consumer grade, ASUS ROG STRIX
RAM: 64 GB ECC (motherboard QVL compliant, BIOS enabled)
Disk Configuration: 5 wide RAIDZ2, drive controller I had lying around
Build Goals: Homelab built partially from spare parts, learning TrueNAS for possible work use

Logical Network: home network, nothing special
Connection Type: ethernet
Number of Ports: 1
Additional Configurations: none

Thanks all :slightly_smiling_face:

It still won’t let me post my screenshots, or link to them, probably because I’m a new user. As a workaround, here it is in a code block:

https://imgur.com/a/fazxDWh

Aiui, this setting is for the NIC that could make http response for the GUI http requests.
In the System → Advanced Settings, there is an Allowed IP Addresses option. You can try to set it to 127.0.0.1. Not sure whether it would work or not. But if it would, you won’t be able to access GUI from the other machines in a LAN (just as you planed).

Truenas has its own CLI for settings. But perhaps you meant shell. Using the shell for the settings is not a good idea. For one, those settings probably wouldn’t survive an update. Using the shell for querying ZFS is an ok idea. All above is just my opinion.

1 Like

Ah, perfect!

I set System → Advanced → Allowed IP Addresses to 127.0.0.1. GUI over SSH continues to work; normal access is still listening but responds with an nginx 403.

Noted on your CLI / shell advice, sounds like “ready only” is the way to go.

Much appreciated :slightly_smiling_face:

1 Like

Well, it’s not exactly “read only”. You can change the settings of ZFS, and they will be preserved because they will be stored within a zfs pool itself. But better to stick to UI while you can.
And again, this is just my opinion.

1 Like