Appliance IP Allow List Template
Configuration > Overlays & Security > Security > Appliance IP Allow List Template
The Appliance IP Allow List Template enables administrators to define and enforce IP-based access controls for management protocols such as SSH, HTTPS, and SNMP on EdgeConnect appliances. In Orchestrator version 9.6.0 and later, this feature enhances control plane security by restricting access to trusted IP addresses only.
Appliance IP Allow List Template Settings
For a target appliance selected in the appliance tree, the configuration options below are available.
| Field | Description |
|---|---|
| Enable | Enable/Disable the IP Allow List feature. The status indicator displays whether the IP Allow List feature is enabled or disabled for the selected appliance. |
| IP/Mask | Specify a valid IPv4 Remote Address by setting the Mask which determines the range of IP addresses allowed. Possible values are 24 or 32. If the last octet of the IP address is zero, use a mask of 24. Use a mask of 32 for absolute IP addresses. |
| Authentication Type | Choose one or more protocols (SSH, HTTPS, SNMP) for which the IP entry applies. |
| Comments | Optionally annotate entries to clarify purpose and ownership for audit or documentation purposes. |
Upon saving changes, the configuration tab auto-closes to confirm successful application.
Note the following conditions and guidelines.
-
Ensure the IP Allow List feature is enabled and protocols are correctly assigned before relying on its enforcement. Entries may appear even when the feature is disabled.
-
Adding a new entry via the CLI with different protocols will override existing protocol settings for that IP.
-
Review entries periodically to maintain alignment with security policies.