Accessing Arrow Control
This guide walks you through connecting to and logging into Arrow Control on your Arrow VM.
Prerequisites
Section titled “Prerequisites”Before accessing Arrow Control, ensure you have:
- Arrow VM deployed and running - Via Arrow Manager or standalone installation
- System user account credentials - Username and password for the VM
- Netbird VPN connection - Arrow Control is only accessible over the VPN (see VPN Management)
- Modern web browser - Chrome, Firefox, Safari, or Edge
- VM VPN IP address - Obtain from the ARROW Portal or Netbird client
Finding Your VM IP Address
Section titled “Finding Your VM IP Address”Via Arrow Manager
Section titled “Via Arrow Manager”- Open the Arrow Manager dashboard
- Navigate to the Proxmox section
- Locate your VM in the list
- Copy the VPN IP address displayed
Screenshot Coming Soon
Arrow Manager dashboard showing VM list with IP addresses Screenshot
Via Netbird Client
Section titled “Via Netbird Client”- Open the Netbird client application on your computer
- View the connected peers list
- Find your Arrow VM by its hostname
- Copy the assigned IP address
Screenshot Coming Soon
Netbird client showing connected peers Screenshot
Connecting to Arrow Control
Section titled “Connecting to Arrow Control”Step 1: Connect to the VPN
Section titled “Step 1: Connect to the VPN”Arrow Control is only accessible over the Netbird VPN. You must be connected before proceeding.
- Open the Netbird client on your computer
- Verify the connection status shows “Connected”
- Confirm you can see your Arrow VM in the peers list
If not connected, refer to the VPN Management guide for setup instructions.
Screenshot Coming Soon
Netbird client showing connected status Screenshot
Step 2: Open Arrow Control in Browser
Section titled “Step 2: Open Arrow Control in Browser”- Open your web browser
- Navigate to Arrow Control using your VM’s VPN IP address:
https://<vm-vpn-ip>:20443Example: https://100.64.0.5:20443
Screenshot Coming Soon
Browser address bar with Arrow Control URL Screenshot
Step 3: Accept Security Certificate
Section titled “Step 3: Accept Security Certificate”On first access, your browser will display a security warning because Arrow Control uses a self-signed certificate. This is expected behavior.
Chrome/Edge:
- Click “Advanced”
- Click “Proceed to [ip-address] (unsafe)”
Firefox:
- Click “Advanced…”
- Click “Accept the Risk and Continue”
Safari:
- Click “Show Details”
- Click “visit this website”
Screenshot Coming Soon
Browser certificate warning screen Screenshot
Note: For production environments, your administrator can install a custom SSL certificate to eliminate this warning.
Logging In
Section titled “Logging In”Step 1: Enter System Credentials
Section titled “Step 1: Enter System Credentials”On the login page, enter:
- Username: Your system user account name (e.g.,
admin,user) - Password: Your system user password
These are the same credentials used for SSH access to the VM.
Screenshot Coming Soon
Arrow Control login form Screenshot
Step 2: Authenticate
Section titled “Step 2: Authenticate”Click “Login” or press Enter to submit your credentials. Arrow Control validates your credentials against the system user database.
Step 3: Access Dashboard
Section titled “Step 3: Access Dashboard”Upon successful login, you’ll see the Arrow Control dashboard with:
- System metrics overview
- Quick access cards for each feature
- Navigation sidebar
Screenshot Coming Soon
Arrow Control dashboard after successful login Screenshot
Troubleshooting Login Issues
Section titled “Troubleshooting Login Issues”| Issue | Solution |
|---|---|
Cannot reach https://vm-ip:20443 | Verify VPN connection is active. Check that the VM is running. Confirm the IP address is correct. |
| ”Connection refused” error | Ensure Arrow Control service is running on the VM. Verify port 20443 is accessible. |
| ”Invalid credentials” | Verify username and password are correct system credentials. Check caps lock is off. Try SSH login to confirm credentials work. |
| ”Session expired” | Re-login (sessions expire after 8 hours of inactivity). |
| Certificate errors persist | Clear browser cache. Try a different browser. Contact admin for custom certificate. |
| Root login fails | Root login is disabled by default for security. Use a non-root system user account. |
Understanding the Dashboard
Section titled “Understanding the Dashboard”Dashboard Overview
Section titled “Dashboard Overview”The dashboard provides at-a-glance information about your VM:
- System Metrics: CPU, memory, disk, and network usage
- Quick Access Cards: One-click access to major features
- Recent Activity: Summary of recent actions
- License Status: Current license validity (if applicable)
Screenshot Coming Soon
Annotated dashboard showing key elements Screenshot
Navigation Sidebar
Section titled “Navigation Sidebar”The left sidebar provides access to all Arrow Control features:
- Click any menu item to navigate to that section
- The current section is highlighted
- The sidebar collapses on mobile devices for better screen usage
User Menu
Section titled “User Menu”The user menu in the top-right corner provides:
- Display of logged-in username
- Access to settings and preferences
- Logout option
Screenshot Coming Soon
User menu dropdown options Screenshot
License Information
Section titled “License Information”License Status
Section titled “License Status”Arrow Control requires a valid license for production use:
- Licenses are managed through Arrow Manager
- The dashboard displays license status and expiration date
- Development builds operate without license restrictions
License Validation
Section titled “License Validation”- Automatic validation: Arrow Control validates with Arrow Portal when online
- Offline grace period: Limited functionality available during network outages
- Support: Contact your administrator if license issues occur
Session Management
Section titled “Session Management”Session Duration
Section titled “Session Duration”- Default timeout: 8 hours of inactivity
- Persistence: Sessions persist across browser restarts
- Multiple sessions: Concurrent sessions from different devices are supported
Logging Out
Section titled “Logging Out”To end your session:
- Click your username in the top-right corner
- Select “Logout” from the dropdown menu
- You’ll be returned to the login page
Best Practice: Always log out when finished, especially on shared computers.
Security Best Practices
Section titled “Security Best Practices”Follow these recommendations for secure Arrow Control usage:
- Always use the VPN: Arrow Control is only accessible over the Netbird VPN
- Use strong passwords: Ensure your system account has a strong, unique password
- Log out when finished: Especially important on shared or public computers
- Keep browser updated: Use the latest browser version for security patches
- Report suspicious activity: Notify your administrator of any unusual behavior
- Don’t share credentials: Each user should have their own system account
- Enable MFA on VPN: Add an extra layer of security with multi-factor authentication on Netbird
Next Steps
Section titled “Next Steps”After logging in, explore Arrow Control’s features:
- Arrow Control Overview - Learn about all available features
- File Management - Browse and manage files on your VM
- Terminal Access - Open web-based terminal sessions
- System Monitoring - View real-time metrics and manage processes
- App Management - Install security and penetration testing tools
Related Documentation
Section titled “Related Documentation”- Arrow Control Overview - Complete feature overview
- VPN Management - Netbird VPN setup and configuration
- Arrow Manager Overview - VM deployment and management
- Troubleshooting - General troubleshooting guide