07-25-2007 10:47 AM - edited 03-10-2019 03:43 AM
I can't seem to find a good answer to this... I need to have certain hosts be able to run blocked applications on other hosts. Can I set exceptions by username and/or IP address?
07-25-2007 11:18 AM
What product are you trying to configure?
Tom
07-25-2007 01:13 PM
CSA 4.5
07-25-2007 02:07 PM
It is possible to create network address sets of trusted hosts which you can allow other hosts to accept connections from.
If you have static IP address it's relatively simple.
For example, you could create a Network Access Control rule that allows all hosts to accept connections from x.x.x.x on TCP port 161 if you had something using SNMP.
You'll just need to determine what IPs and ports to allow if that's all that's preventing it.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide