Appliance IP Allow List
Configuration > Overlays & Security > Security > Appliance IP Allow List
Use this tab to configure the Appliance IP Allow List. The Appliance IP Allow List restricts which IP addresses can establish SSH, SNMP and HTTPS connections to an appliance. This blocks access from unknown or potentially malicious IP addresses by ensuring that only specified IP addresses are permitted to initiate sessions. Some examples of specified IP addresses one might choose to allow are those from corporate offices or VPNs.
Appliance IP Allow List Settings
For a target appliance selected in the appliance tree, the configuration options below are available.
| Field | Description |
|---|---|
| Enable | Enable/Disable the IP Allow List feature. The status indicator displays whether the IP Allow List feature is enabled or disabled for the selected appliance. |
| IP/Mask | Specify a valid IPv4 Remote Address by setting the Mask which determines the range of IP addresses allowed. Possible values are 24 or 32. If the last octet of the IP address is zero, use a mask of 24. Use a mask of 32 for absolute IP addresses. |
| Authentication Type | Choose one or more protocols (SSH, HTTPS, SNMP) for which the IP entry applies. |
| Comments | Optionally annotate entries to clarify purpose and ownership for audit or documentation purposes. |
Upon saving changes, the configuration tab auto-closes to confirm successful application.
Note the following conditions and guidelines.
-
Ensure the IP Allow List feature is enabled and protocols are correctly assigned before relying on its enforcement. Entries may appear even when the feature is disabled.
-
Adding a new entry via the CLI with different protocols will override existing protocol settings for that IP.
-
Review entries periodically to maintain alignment with security policies.