Loading...
5-33
Confi guration
3. Deny List:
a) From the IP Security Menu, type 2 and press [Enter] to display
the Deny List.
b) Enter the IP Address(es) for the clients that you wish to deny.
Note that if the client’s IP Address is not found in the Deny List,
that client will be allowed to connect. Use the same procedure
for entering IP Addresses described in Step 2 above.
Note: After IP addresses have been added to the Allow or Deny
list, the IP Security feature will be automatically enabled, and the
Network Configuration menu will indicate that the feature is "On."
Linux Operators and Wild Cards
In addition to merely entering a specific IP address or partial IP address in
the Allow or Deny list, you may also use any standard Linux operator or
wild card. In most cases, the only operator used is "EXCEPT" and the only
wild card used is "ALL", but more experienced Linux users may note that
other operators and wild cards may also be used.
EXCEPT:
This operator creates an exception in either the "allow" list or "deny" list.
For example, if the Allow list includes a line which reads "192. EXCEPT
192.255.255.6," then all IP address that begin with "192." will be allowed;
except 192.255.255.6 (providing that address appears in the Deny List.)
ALL:
The ALL wild card indicates that all IP Addresses should be allowed or
denied. When ALL is included in the Allow list, all IP addresses will be
allowed to connect; conversely, if ALL is included in the Deny List, all IP
Addresses will be denied (except for IP addresses listed in the Allow List.)
For example, if the Deny List includes a line which reads "ALL EXCEPT
168.255.192.192, then all IP addresses except 168.255.192.192 will be
denied (except for IP addresses that are listed in the Allow List.)
Net/Mask Pairs:
An expression of the form "n.n.n.n/m.m.m.m" is interpreted as a "net/mask"
pair. A host address is matched if "net" is equal to the bitwise AND of the
address and the "mask."
For example, the net/mask pattern "131.155.72.0/255.255.254.0" matches
every address in the range "131.155.72.0" through "131.155.73.255."
Loading...
Terms of Use | Privacy Policy | DMCA Policy
2006-2020 Rsmanuals.com