About this task
The following procedure describes how to change the global IP access
setting to Deny by Default and specify some hosts to allow.
To allow connection from specified IP hosts
Procedure
-
Expand the menu options icon
, in the title bar,
and select
Administration.
-
Select
Security > Global IP Access Settings.
-
Click
Port restrictions - Allow/Deny by IP
address.
The Global IP Access Settings section appears.
-
Select
Deny by default.
Note: If you select
Deny by default, ensure that you
configure the IP that must be allowed to access ports. Otherwise, ports cannot
be accessed by external hosts.
-
In the
Allow List field, provide the names of hosts
for which you want to allow access to the port and click
+ Add.
You can specify the host names (for example,
workstation5.webmethods.com) or IP addresses
(for example,
132.906.19.22 or
2001:db8:85a3:8d3:1319:8a2e:370:7348) in the
above fields. Repeat this step to add the required host names and IP addresses
to the list.
The host names or IP addresses can include upper and lower case
alphabetic characters, digits (0-9), hyphens (-), and periods (.) but cannot
include spaces. For IPv6, IP addresses can also include colons (:) and brackets
([]).
Note: IP addresses are harder to spoof, and therefore more
secure.
You can use the following pattern-matching characters to
identify several clients with similar host names or IP addresses.
| Char
|
Description
|
Example
|
| *
|
Matches any number of characters
|
r*.webmethods.com
|
| ?
|
Matches any single character
|
workstation?.webmethods.com
|
-
Click
Save.
The changes are saved.