[ATP/FLEX] How do I allow a specific lan client to access the device on a Nebula firewall?






Scenario :
How do I allow a specific IP address to access the device on a Nebula firewall?
Answer :
For instance, if a user wants to allow the IP address 192.168.1.33 to access the firewall and deny other clients from accessing it, please refer to the steps below to set it up
STEP1.
Please navigate to Site-wide > Configure > Firewall > Interface to configure a static DHCP table entry for the IP 192.168.1.33 and the host's MAC address. Please refer to this FAQ : [ATP/FLEX] How to configure a static DHCP IP in Nebula?
STEP2.
Please navigate to Site-wide > Configure > Firewall > Security Policy to configure the first security policy to allow 192.168.1.33 to access the device, and configure the second security policy to deny other LAN clients (192.168.1.0/24) from accessing the device.
STEP3.
If the IP 192.168.1.33 accesses the device, it will be allowed by the firewall, while any other IP (such as 192.168.1.34) attempting to access the device will be denied by the firewall. Please navigate to Site-wide > Monitor > Firewall > Event log to check it.
Categories
- All Categories
- 429 Beta Program
- 2.6K Nebula
- 163 Nebula Ideas
- 112 Nebula Status and Incidents
- 6K Security
- 350 USG FLEX H Series
- 291 Security Ideas
- 1.5K Switch
- 78 Switch Ideas
- 1.2K Wireless
- 42 Wireless Ideas
- 6.6K Consumer Product
- 261 Service & License
- 406 News and Release
- 87 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.8K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 82 Security Highlight