Manualshelf

Product User Guide

ManualsBrandsIntel ManualsOtherIntel Server Board S5000PSLSASR
81828384858687888990
Intel® Remote Management Module 2 User Guide 75
7.6.3.3 IP Access Control
This section contains settings for the module built-in firewall. This firewall can be generally
enabled or disabled. If enabled, the firewall allows for explicitly blocking or allowing connections
from certain client IP addresses.
If the default policy is set to DROP, a list of IP addresses or address ranges can be configured
to be exceptionally ACCEPTed. If the default policy is set to ACCEPT, a list of IP addresses or
address ranges can be configured to be exceptionally DROPped.
The network or address range has to be configured in CIDR (Classless Inter-Domain Routing)
notation, e.g. 192.168.1.0/24. It has to consist of an IP address followed by a slash and the
number of relevant bits belonging to the network or address range (counting from left).
Enable IP Access Control
Enables access control based on IP source addresses.
Default Policy
This option controls what to do with arriving IP packets that do not match any of the configured
rules. They can be accepted or dropped.
WARNING
If you set this to “DROP” and you have no “ACCEPT” rules configured, the access to the web
interface over LAN is actually impossible! To enable access again you can change the security
settings via modem or by temporarily disabling IP access control with the initial configuration
procedure.
Rule Number
This should contain the number of a rule for which the following commands will apply. If
appending a new rule, this field will be ignored.
IP/Mask
Specifies the IP address or IP address range for which the rule applies. Examples (the number
concatenated to an IP address with a “/” is the number of valid bits that will be used of the given
IP address):
Table 4: Example of IP Access Control
192.168.1.22/32
Matches the IP Address
192.168.1.22
192.168.1.0/24
Matches all IP packets with
sources addresses from
192.168.1.0 to 192.168.1.255
0.0.0.0/0
Matches any IP packet
Policy
The policy determines what to do with matching packets. They can be either accepted or
dropped.