Manuals / APC / Household Appliance / Home Security System

APC NBRK0450 manual Configuring IP filters, Using CIDR bit-masks, NetBotz Appliance User’s Guide

Models: NBRK0550 NBRK0450 NBRK0570

1 152

Download 152 pages 42.21 Kb

Page 94

Configuring IP filters

posted to a monitoring StruxureWare Data Center Expert server.

Configuring IP filters

The IP filter has four behaviors when dealing with incoming network packets:

•If there are no filter entries, all packets are accepted by the appliance.

•If there are filter entries, those filter entries are evaluated in order from first to last as they appear in the entry list.

•If a filter matches the corresponding packet data, the network packet is either accepted or rejected by the appliance based on that rule.

•If no filter is matched, the network packet is accepted. If this is not the desired behavior, a "catch-all" filter must be placed at the end of the list, which will block all undesired IP addresses.

As soon as the IP Filter finds a filter that applies to the network packet, it stops evaluating filters and applies the behavior (accept or reject) specified by the current filter entry. Therefore, a rule rejecting all IP addresses must be placed at the end of the list.

Since rules are applied from top-to-bottom, any rules listed after the all-IP filter are ignored. For example, you cannot deny access to all IP addresses, then open up exceptions later in the list. Only the first rule that applies to the IP address is resolved.

WARNING: If you are overly restrictive when setting up your IP filters, it is possible to lock out all web access to the appliance! Exercise caution when setting up your IP filters.

Using CIDR bit-masks

An IP address can contain the CIDR bit-mask syntax for address segments that are specified as "0", for example:

192.168.0.0/16 means all segments and nodes on 192.168. 192.168.0.0/24 means all nodes on 192.168.0.

192.168.0.0/32 means the specific node at 192.168.0.0, and is the same as not specifying a CIDR bit-mask.

Note: To specify all IP addresses, use the syntax "Exclude 0.0.0.0/32".

Warning: Setting the action to "Exclude" can lock out access to the appliance through the Web Client and Advanced View.

NetBotz Appliance User’s Guide

84

Image 94

APC NBRK0450, NBRK0550, NBRK0570 manual Configuring IP filters, Using CIDR bit-masks, NetBotz Appliance User’s Guide

Contents

NBRK0570 NBRK0550 NBRK0450 NBWL0455 NBWL0456 NetBotz Appliance User’s GuideNBWL0355 NBWL0356 Page Web Client: Getting Started PrefaceIntroduction Web Client: Monitoring Your EnvironmentAdvanced View: Monitoring Your Environment Advanced View: Pod/Sensor Settings Output control label settings Advanced View: Configuring Appliances Advanced View: Defining Thresholds Overloaded Appliances Symptoms and SolutionsAdvanced View: Creating Alert Actions BotzWare MacrosNetBotz Appliance User’s Guide viiiMisuse PrefaceU.S. Government Restricted Rights Availability of Open Source TechnologiesSystem Definition IntroductionBasic Concepts and Terminology SSL Support NetBotz Appliance User’s GuideWeb Client Getting Started System RequirementsChoosing a Language Accessing the Web ClientSupported languages Launching Advanced View Interface NavigationNetBotz Appliance User’s Guide Web Client: Monitoring Your Environment Status tabPods tab Alerts tabCameras tab NetBotz Appliance User’s Guide•Settings: Allows you to change the pod label System Requirements Advanced View: Getting Started•A monitor capable of displaying a resolution of –Microsoft Windows XP Pro SP2 or SP3Installing software on a Windows system Software InstallationInstalling software on a Linux system Adding Appliances Removing AppliancesAccessing an Appliance Using Advanced View Interface Navigation Using foldersNavigation pane Locking a Navigation pane selection • Configure sensor Sensor Data PaneAction/Information Pane • View graphAdvanced View Menus Appearance preferences Using Advanced View POST-onlyModeEditing Preferences General preferencesControlling Rack Access sensors Advanced View Monitoring Your EnvironmentViewing Sensor Readings and Status Alerting SensorsDeleting a Pod Viewing Live Video Standard camera controlsName Pelco PTZ camera controlsControl DescriptionDescription ControlName Resize Camera View CenterModifying a Pelco PTZ Camera Preset Pelco PTZ Camera PresetsAdding a Pelco PTZ Camera Preset Renaming a Pelco Camera PresetRecording Camera Images Viewing AlertsResolving alerts Viewing MapsSaving picture sequences to your system Viewing Graphs Creating and editing mapsRunning a historical data report Viewing Historical DataExporting the data to a text file Event Log NetBotz Appliance User’s GuidePre-configuredalert actions Advanced View: Pod/Sensor SettingsAlert Action Available alert notification methodsFor more information, see “SMS” on page Alert Profile Creating or editing alert actionsDefault alert profile Creating or editing an alert profileCreating an alert sequence Suppressing alert notifications 3.Check Suppress alert notifications untilCamera Pods SettingsDescription Check Enable video from cameraField Click Advanced SchedulingCapture settings Description FieldFlicker filter Description FieldPost-AlertCapture Time Mask settings Masking a Pelco IP camera Visual mode settingsNetBotz Appliance User’s Guide Sensor configuration Threshold configurationScanned Devices NetBotz Appliance User’s Guide Item Adding, editing, and removing SNMP targetsDescription Specifying global SNMP settings Adding or updating Device Definition Files Supplemental OIDs viewSensor settings IPMI Devices Adding, editing, and removing IPMI devicesSensor settings To modify a sensorRemoving a slave ID from a pod Modbus Slave SystemAssigning a slave ID to a pod Viewing the Modbus mapExporting the Modbus map Output ControlOutput control label settings Assigning a register address to a sensorAction Output control external port settingsDescription 3.Click OK a.Select Switch Relay and click OK Output control sensor settings Periodic Reports Configuring periodic e-mailreportsConfiguring periodic FTP reports a.Click Advanced SchedulingDescription FieldGraph priority Configuring periodic HTTP reports a.Click Advanced SchedulingRack Access Pods Configuring the Rack Access Pod settingsConfiguring the Rack Access Pod sensors Threshold configurationSelecting a card format Rack Access SystemAbout the Rack Access System dialog Registering cards2.Click Edit Registering a card manuallyEditing card information Deleting a card1.Click Copy Permissions Copying permissions between cardsRemoving a door from a card Removing an appliance Adding an applianceEditing an appliance Sensor Pods Settings SensorsExternal ports 1.Click Add custom –Define the custom analog sensor–Define the custom dry contact sensor –Define the custom 4-20mAsensor 3.Click Remove CustomBackup Advanced View: Configuring AppliancesClock Adding custom audio clips Custom Audio ClipsData Center Expert 2.Click Add custom audio clipConfiguring DNS settings Configuring dynamic DNS settingsE-mailServer External StorageUsing an external storage system Using a Windows shareTo configure your appliance to use a Windows Share Using an NFS mount Removing external storageReclaiming external storage data Warning: Do not initialize the target shareOverview IP FilterAdding new filters Protocol Filter ActionIP Address PortUsing CIDR bit-masks Configuring IP filtersNetBotz Appliance User’s Guide IP Address Exclude 0.0.0.0/32 Example configurationsIP Address Include IP Address ExcludeLicense Keys LocationNetwork Interfaces Modbus Slave CommunicationNetBotz Appliance User’s Guide Field Enable InterfaceDescription PPP/Modem Description The following controls appear in the Advanced tabField FieldPPPperformance considerations NetBotz Appliance User’s GuideUpgrading over PPP Using SIM securityNetBotz Appliance User’s Guide Pod, Pelco Camera, and Rack Access PX-HIDSharing To designate shared sensor pods Setting up a Pelco shared IP camera pod Setting up shared IP camera podsNetBotz Appliance User’s Guide Rack Access Settings ProxyConfiguring the available language files Region2.Select Check APC Website and click Next Restore Serial DevicesPage SNMP commandsPage Upgrade Users7.Select a Login failure alert severity 8.Select a Login failure alert profile•User ID: apc •Password: apc Lost password recovery•User ID: root •Password: apc Basic Tab Web ServerAdvanced tab Advanced View: Defining Thresholds Defining Analog Thresholdssms:sms_device_address NetBotz Appliance User’s GuideDefining State Thresholds sms:sms_device_address NetBotz Appliance User’s GuideAdvanced Threshold Settings Advanced View: Creating Alert Actions 3.Select Activate Button Output and click OK Creating an activate button output alert actionCreating a play audio alert action Creating a play custom audio alert action 3.Select Play Custom Audio Alert and click OKCreating a send custom HTTP GET alert action 3.Select Send Custom HTTP GET and click OKNetBotz Appliance User’s Guide 1.Double-clickthe Alert Actions icon Creating a send data to FTP server alert action 3.Select Send Data to FTP Server and click OK15.Click OK to save this Alert Action Creating a send e-mailalert action 17.Click OK to save this Alert Action Creating a send HTTP post alert action Creating a send short message e-mailalert action 3.Select Send Short Message E-Mail and click OK3.Select Send SNMP v1 Trap and click OK d.Click to Send Both HTML and Plain Text MessageCreating a send SNMP v1 trap alert action 8.In the Advanced tab, enter the Trap Port NumberCreating a send SNMP v3 inform alert action Creating a send wireless SMS message alert action3.Select Send SNMP v3 Inform and click OK d.Specify a Message Validity Period e.Click to Send Both HTML and Plain Text MessageCreating a set beacon output state alert action 3.Select Set Beacon Output State and click OK3.Select Set Output Switch 1 and click OK Creating a set switch output state alert action 3.Select Set Switch Output State and click OKCreating a set outlet state alert action 3.Select Set Outlet State and click OKCreating a set lock output state alert action 3.Select Set Lock Output State and click OKCreating a set reader output state alert action 3.Select Set Reader Output State and click OKAppliance Macros BotzWare MacrosLocation Macros Example MacroDefinition $ROOMDefinition Alert MacrosMacro ExampleExample MacroDefinition $ALERT LEVELOverloaded Appliances Symptoms and Solutions SymptomsSolutions NetBotz Appliance User’s Guide Verifying Signed M-JPEGAVI Files Output ExamplesUSA—FCC Radio Frequency Interference警告使用者 Canada-ICES990-3288E APC Worldwide Customer Support2/2013