Access Control via IP ACL

Aus Gude Systems GmbH
Zur Navigation springen Zur Suche springen

IP Access Control List

The IP ‘A'ccess Control List (IP ACL for short) allows you to restrict access to specific subnets or specific hosts.


Zugriffskontrolle über IP-ACL 1.png


  • If the Enable IP Filter option is enabled, only the subnets or hosts listed in the list have access to the device.
  • Subnets are entered using the notation [IP address]/[mask], where [mask] corresponds to the width of the subnet mask:
    • ‘192.168.1.0/255.255.255.0’ corresponds to '192.168.1.0/24'
    • ‘192.168.0.0/255.255.0.0’ corresponds to ‘192.168.1.0/16’
    • ‘192.0.0.0/255.0.0.0’ corresponds to '192.168.1.0/8'
  • Hosts are specified without a subnet mask:
    • e.g., ‘10.0.0.1’
  • The Reply ICMP ping requests option determines whether the device responds to ECHO request signals.


The settings in the screenshot (see above) therefore allow the entire subnet 192.168.1.0 with the network mask 255.255.255.0, as well as the host with the IP address 192.168.2.23, access to the HTTP server and all other IP services (e.g. SNMP)

Important: If services such as DHCP, SNTP, and SNMP are to be used, all computers that communicate with the device via a service must be enabled in the IP ACL. For example, the DHCP server must be included in the IP ACL if DHCP is used and the IP ACL is enabled.

Note: If the IP filter list is empty but ‘Enable IP Filter’ is enabled, the feature is ignored, meaning everyone has access.


Glossary

Abgerufen von „https://wiki.gude-systems.com/index.php?title=Access_Control_via_IP_ACL&oldid=1435