Difference between revisions of "Network Rules"

From Hornbill
Jump to navigation Jump to search
Line 1: Line 1:
 
{{bluebanner|[[Main_Page|Home]] > [[Administration]] > [[System Administration|System]] > [[System Security|Security]] > Network Rules|[[:Category:Service Manager Administration|Index]]}}
 
{{bluebanner|[[Main_Page|Home]] > [[Administration]] > [[System Administration|System]] > [[System Security|Security]] > Network Rules|[[:Category:Service Manager Administration|Index]]}}
==Introduction==
+
== Introduction ==
The ''Network Rules'' option within Hornbill Administration allows Enterprise customers to control who can access the Honrnbill Instance.
 
  
==Settings==
+
The ''Network Rules'' option within Hornbill Administration allows Enterprise customers to control the access to the Hornbill instance.  
Rules for Access can be added to Either Allow Acccess or Deny Access and a mixture of these can be used to allow Access from only your office IP and Deny Access to the rest of the world.  
 
  
Configuration is Simple by Clicking the ADD + button and then entering the IP with Mask and choosing whether this is allowed or Denied.
+
== Settings ==
  
The Rules are enforced in order shown and first matching rule applied.  
+
Rules can be added to allow or deny access. A mixture of the two could also be used. For example, to allow access to an instance via the company's office network only and deny access to the rest of the world.
  
Therefore to ALLOW only your Office to connect you would add an allow rule for Office external gateway which is usually a single IP (/32) and then add a DENY rule for the rest of the internet (0.0.0.0/0). 
+
When configuring a rule, the IP address including the subnet mask is required. When more than one rule exists, the order of the rules can be updated using the drag-and-move option on the left-hand side. The rules will be processed in the order that they are listed, starting at rule 1. If a rule doesn't match the criteria, the next rule is then considered.
 
 
You should also add the 10.4.0.0/16 so the Hornbill instance can communicate with other Hornbill services. (This is only for Internal Hornbill communication).  
 
  
 +
=== Configuration ===
  
 +
* The company's office network's IP address is usually a single IP (/32).
 +
* To allow a Hornbill instance to communicate with other Hornbill services, add an entry to allow access to 10.4.0.0/16.
 +
* To deny access to the rest of the world, create a deny rule with the value 0.0.0.0/0.
  
 
  [[file:IPFIlter.png]]
 
  [[file:IPFIlter.png]]

Revision as of 16:55, 2 March 2021

Home > Administration > System > Security > Network Rules Index

Introduction

The Network Rules option within Hornbill Administration allows Enterprise customers to control the access to the Hornbill instance.

Settings

Rules can be added to allow or deny access. A mixture of the two could also be used. For example, to allow access to an instance via the company's office network only and deny access to the rest of the world.

When configuring a rule, the IP address including the subnet mask is required. When more than one rule exists, the order of the rules can be updated using the drag-and-move option on the left-hand side. The rules will be processed in the order that they are listed, starting at rule 1. If a rule doesn't match the criteria, the next rule is then considered.

Configuration

  • The company's office network's IP address is usually a single IP (/32).
  • To allow a Hornbill instance to communicate with other Hornbill services, add an entry to allow access to 10.4.0.0/16.
  • To deny access to the rest of the world, create a deny rule with the value 0.0.0.0/0.
IPFIlter.png
Retrieved from "https://wiki.hornbill.com/index.php?title=Network_Rules&oldid=26418"