Technical Library | Support

Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Configuration Files > ip_allow.config
ip_allow.config
Help | Content Gateway | Version 8.0.x
The ip_allow.config file controls client access to the proxy. You can specify ranges of IP addresses that are allowed to use Content Gateway.
 
* 
Important 
After you modify the file, run content_line -x from the Content Gateway bin directory (/opt/WCG/bin) to apply the changes. When you apply the changes to a node in a cluster, Content Gateway applies the changes to all nodes in the cluster.
Format
Each line in the ip_allow.config file must have the following format:
src_ip=ipaddress action=ip_allow | ip_deny
where ipaddress is the IP address or range of IP addresses of the clients allowed to access the proxy.
The action ip_allow allows the specified clients to access the proxy.
The action ip_deny denies the specified clients to access the proxy.
By default, the ip_allow.config file contains the following line, which allows all clients to access the proxy. Comment out or delete this line before adding rules to restrict access.
src_ip=0.0.0.0-255.255.255.255 action=ip_allow
Examples
The following example allows all clients to access the proxy:
src_ip=0.0.0.0-255.255.255.255 action=ip_allow
The following example allows all clients on a specific subnet to access the proxy:
src_ip=123.12.3.000-123.12.3.123 action=ip_allow
The following example denies all clients on a specific subnet to access the proxy:
src_ip=123.45.6.0-123.45.6.123 action=ip_deny

Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Configuration Files > ip_allow.config
Copyright 2016 Forcepoint LLC. All rights reserved.