Restricted Management Access

This dialog allows you to differentiate (restrict) the management access to the device based on IP address ranges and individual management services.

When you activate this function, you can only use the specified IP address ranges to access the management services activated for these address ranges. The device rejects all other requests. You can make up to 16 entries in the list, permit or forbid specific management access for each address range, and activate or deactivate the individual entries separately.

The following management services support restricted management access:

Note: The CLI access via the V.24 interface is excluded from the function and cannot be restricted.
Note: You require the http or https service to start the graphical user interface in a browser.
Afterwards, you require the snmp service to access the device with the graphical user interface. When you start the graphical user interface outside the browser, you only require snmp.

In the default setting, the restricted management access is deactivated. In this case, anyone with the correct administrator logon data has access to all management services.

If you have activated the function, and if there is at least one active entry whose IP address range matches the request and for which the requested management service is allowed, the device processes the request. Otherwise the device rejects it.

In the default setting, the device provides you with a default entry with the IP address 0.0.0.0, the netmask 0.0.0.0 and all the management services. This allows access to services from any IP address. This allows you access to the device, even if a restriction is activated, for example to initially configure the function. You have the option to change or delete this entry.
When you create a new entry, this entry also has these preset properties.

Note: If you activate the function and no entry in the table permits your current access, then you can no longer access the management of the device once you write these settings to the device.
If no entry allows access, nobody has access to the device management.
In this case, use the CLI access via V.24 to access the management of the device.

Tab. Restricted management access

Parameters

Meaning

Possible values

Default setting

Operation

Switches the function on and off for the device.

On

Off

Off

Index

Sequential number of the entry. When you delete an entry, this leaves a gap in the numbering. When you create a new entry with the Web-based interface, the device fills the first gap.

1 - 16

1 (the preset entry).

IP Address

Together with the netmask, defines the network area for which this entry applies.

Valid IPv4 address or 0.0.0.0

0.0.0.0
(for all newly created entries)

Netmask

Together with the IP address, defines the network area for which this entry applies.

Valid IPv4 netmask or 0.0.0.0

0.0.0.0
(for all newly created entries)

HTTP

Activates or deactivates the http service (Web server) for this entry.

On

Off

On

(for all newly created entries)

HTTPS

Activates or deactivates the https service (Web server) for this entry.

On

Off

On

(for all newly created entries)

SNMP

Activates or deactivates the SNMP service (SNMP access) for this entry.

On

Off

On

(for all newly created entries)

Telnet

Activates or deactivates the Telnet service (Telnet access) for this entry.

On

Off

On

(for all newly created entries)

SSH

Activates or deactivates the SSH service (SSH access) for this entry.

On

Off

On

(for all newly created entries)

Active

Activates or deactivates the entire entry.

On

Off

On

(for all newly created entries)


Note: An entry with an IP address of 0.0.0.0 together with a netmask of 0.0.0.0 applies for all IP addresses.

Buttons

Tab. Buttons (Forts.)

Button

Meaning

“Set”

Transfers the changes to the volatile memory (RAM) of the device. To permanently save the changes, open the Basic Settings:Load/Save dialog, select the location to save the configuration, and click “Save”.

“Reload”

Updates the fields with the values that are saved in the volatile memory (RAM) of the device.

“Create”

Adds a new table entry.

“Remove”

Removes the selected table entry.

“Help”

Opens the online help.