Black Box kv1161a, kv1081a Setting IP access control, To define a new IP access control entry

Page 68

Setting IP access control

The golden rule with this feature is ‘Include before you exclude’ or to put it another way ‘Arrange allowed addresses in the list before the denied addresses’.

This is because the positions of entries in the list are vitally important. Once a range of addresses is denied access, it is not possible to make exceptions for particular addresses within that range. For instance, if the range of addresses from A to F are denied access first, then the address C could not be granted access lower down the list. Address C needs to be placed in the list before the denied range.

IMPORTANT: This feature should be configured with extreme caution as it is possible to deny access to everyone. If such an error occurs, see Clearing IP access control for details about how to regain access.

In the list, access control addresses prefixed by ‘+’ are allow entries while those prefixed by ‘– ‘ are deny entries.

To get here

1Using VNC viewer or a browser, log on as the ‘admin’ user.

2Click the ‘Configure’ button in the top right corner.

3Click the ‘Network Configuration’ option.

To define a new IP access control entry

1 Click the Add button to display a popup dialog:

Network/Address

Mask

Access

Enter the network address

Enter an IP network mask

Use the arrow buttons to

that is to be allowed or denied

that indicates the range of

select either ‘Allow’ or

access. If a range of addresses

addresses that are to be

‘Deny’ as appropriate.

is being specified then specify

allowed or denied access.

 

any one of the addresses

For instance, if only a single

 

within the range and use the

specified IP address were to be

 

Mask entry to indicate the size

required, the mask entry would

 

of the range.

be 255.255.255.255 in order

 

 

to specify a single location. See

 

 

Calculating the mask for IP

 

 

access control for details.

 

2Enter the base network address, the mask and select the appropriate access setting.

3Click the OK button.

To reorder access control entries

IMPORTANT: When reordering, ensure that any specific allowed addresses are listed higher in the list than any denied addresses. Take care not to invoke any deny access settings that would exclude valid users.

1In the access control list, click on the entry to be moved.

2Click the Up or Down buttons as appropriate.

To edit/remove access control entries

1In the access control list, click on the appropriate entry.

2Click either the Edit or Remove button as appropriate.

®

   



67

Image 68
Contents ServSwitch CX Uno IP Contents Further information Index SAM formats Global usersMany computers ServSwitch CX Uno IP features front and rear What’s in the box What you may additionally needDouble unit rack brackets MountingSingle unit rack brackets Connections SAMFrom video monitor From USB keyboard and mouse Local userTo connect the local user port ServSwitch CX Uno IP Front panel Global user IP network portTo connect the Global user IP network port IP network linkComputer system via SAM To connect a computer systemPower in connection To connect the power supplyOutput lead from Power adapter Exceeds 40 degrees CentigradePower control port To connect and address the switch boxesCascade tree Cascading multiple unitsSee also To connect units in cascade Connecting units in cascadeTips for successful cascading Using cascaded computers Addressing computers in a cascadeUSB-type and that it is plugged Multiple video head connectionsIt is recommended that Second SAM in each pair is a Cable from serial Control device Rear panel Remote switching controlHost computer port/channel Video off Configuration Overall initial configurationInitial configuration To access the main menu Hotkeys Main menuMenu layout SecurityGeneral security and configuration steps To enable general securityTo set an Admin password Registering users and host computersWhat to do if the Admin password has been forgotten To clear a password and restore factory default settingsTo clear IP access control Clearing IP access controlWhat is IP access control? Full configuration by global user To configure the unit from a global user locationViewer encryption settings Encryption settingsServSwitch CX Uno IP encryption settings Networking issues Positioning ServSwitch CX Uno IP in the networkPlacing ServSwitch CX Uno IP behind a router or firewall Port settingsAddressing Firewall/router addressTo discover a DHCP-allocated IP address DNS addressingPorts Placing ServSwitch CX Uno IP alongside the firewallEnsuring sufficient security Power switching configuration Power control sequencesTo configure the power sequences for each host computer To control two or more ports simultaneouslyUpgrading ServSwitch CX Uno IP models Recovering from a failed upgradeTo upgrade ServSwitch CX Uno IP models To invoke backup/recovery modeAccessing the ServSwitch CX Uno IP Front panel indicatorsLocal user access Selecting a computerTo select a computer using the Select Host menu When choosingStandard hotkeys Select Host menu here you can select computers by nameTo select a computer using mouse buttons To select a computer using mouse buttons Advanced methodLogging in and out To logTo enable/disable the confirmation box To change banner colors or disable the bannerConfirmation box Reminder bannerOrange dot indicators in the Select Host menu User preferences and functionsGlobal user access Global UserGlobal user access via VNC viewer To access via the VNC viewerEnter the ServSwitch CX Uno IP address here and click OK To download the VNC viewerGlobal user access via web browser To access via your web browserMenu bar Using the viewer windowWhen using the viewer window Configure Mouse pointersHost selection To select a hostAccess mode shared/private Power switchingAuto calibrate Re-synchronize mouseControls Enable Sun Translation When entering codesVideo Settings Keyboard ControlSetting the Threshold manually Using automatic configurationsIncreased by 50% when a slow link is detected Overlap Capture Advanced SettingsCustom Video Modes Supported web browsers Viewer encryption settingsIf you need to enter a port number Troubleshooting When logging on using VNC viewer, I cannot enter a usernameGetting assistance Techhelp@blackbox.co.ukAppendix 1 Local setup menus To access the local setup menusPower Control Restore Standard MouseRestore Intellimouse FunctionsUser Preferences Reminder BannerReminder Color Screen SaverMouse Switching Settings Disabled 2, 5, 10,15 or 20 MinutesUser Timeout Settings 1, 2, 5, 10, 30 Seconds, 1, 5, 10 MinutesSetup Options Settings Disabled, EnabledConfiguration IP admin password, encryption settings, etcCompletely resets the ServSwitch CX Uno IP unit IP address, net mask, VNC port, etcUnit Configuration Network Configuration Serial Configuration Settings Power Control, Sync UnitsSettings 1200, 2400, 4800, 9600, 19200, 38400, 57600 Options PortReset Configuration To reset the ServSwitch CX Uno IP configurationMain configuration Logged on users Appendix 2 Configuration pages via viewerTo access the remote configuration pages User accounts Unit configuration Advanced unit configuration Time & date configuration Network configuration IP Access ControlIP Network Mask IP GatewaySetting IP access control To define a new IP access control entryTo reorder access control entries To edit/remove access control entriesBaud Rate Serial port configurationOptions Port Use Host configuration Erase Host ConfigurationAdd entry for unrecognized host To create a new host entryLogging and status To copy and paste the logSyslog Server IP Address For further details To get hereLdap configuration Appendix 3 VNC viewer connection options Color/EncodingAuto select Preferred encodingEnable all inputs Disable all inputs view-only modeInputs CustomizeMisc Scaling No ScalingScale to Window Size Custom SizeDefaults Reload Defaults SaveIdentities Load / SaveAppendix 4 VNC viewer window options Security Appendix 5 Browser viewer optionsEncoding and color level Net masks Appendix 6 Addresses, masks and portsIP addresses Net masks the binary explanation Operation with net maskBinary equivalent Binary octet afterCalculating the mask for IP access control Single locationsAll locations Address rangesSecurity issues with ports PortsAppendix 7 Cable and connector specifications Power switch to power switch daisy chain cable9pin D-type female 4pin RJ9 SLAVE2 end 9pin D-type femaleCreating macro sequences Appendix 8 Hotkey sequence codesPermissible key presses Appendix 9 Supported video modes Safety information General Public License LinuxEnd user licence agreement Radio Frequency Energy European EMC directive 89/336/EECFCC Compliance Statement United States Canadian Department of Communications RFI statementCertification notice for equipment used in Canada Normas Oficiales Mexicanas NOM electrical safety statement Instrucciones de seguridad Index Server Access Module connection BlackBox subsidiary contact details Country Web Site/Email Phone Fax