IP Address Filtering

Network access of the IP addresses registered in Blocked IPs or Allowed IPs are always blocked or allowed regardless of the firewall settings. The registered IP addresses in Blocked IPs are permanently blocked but the IP addresses blocked by Signature-based Protection rules are stored in the list just for 30 minutes. If required, you can permanently block the temporarily blocked IP addresses. You also must be aware that the IP addresses as Allowed Network Access, whether or not they can threat the network security, their packet flow is not blocked.   

Note The packets sent from or sent to the IP addresses registered in the blocked IP addresses list are all denied.

To configure IP Address Filtering settings, complete the following steps:

1. Navigate to IP Address Filtering and select the following options:

• Enable IP Filtering: block or allow network connections for IP addresses registered as blocked or allowed IP addresses.
• Temporarily block attacker’s IP address: Block all inbound traffic from IP addresses blocked by the Signature-based Protection rules for 30 minutes.

Note If the same IP address is registered as both allowed and blocked, the allowed IP policy takes precedence.

2. Click Add under Blocked IPs/Allowed IPs to register a blocked/allowed IP address.
3. When the <Manage IP Address> appears, specify the following fields:

• Type: Select the IP address type, such as a single IP address, IP address range, and subnet mask.

Note IPv4: Except for the loopback IP address between 127.0.0.0-127.255.255.255, all IP addresses within 1.0.0.0-223.255.255.255 can be entered.   IPv6: Except for special purpose IP addresses such as 0:0:0:0:0:0:0:0, ::1, ::FFFF:0:0/96, fc00::/7, all IP addresses can be entered.

• Single IP address/subnet mask: Allow or block the IP addresses or subnet masks entered by the user. Enter the IP address or subnet mask to add. When adding a single IP address, you can add the IP address without entering a subnet mask.

Note IPv4: Enter a value between 1 and 32 for subnet mask. E.g., 192.168.0.12/1, 192.168.0.12/24, 192.168.0.12/32 IPv6: Enter a value between 1 and 128 for subnet mask. E.g.,  2002:9b3d:1a32:4:208:74ff:fe39:0/112, 2002:9b3d:1a32:4:208:74ff:fe39:0/128

• IP address range: Allow or block network connections for IP addresses within the range between the start IP address and the end IP address. Enter the start IP address and the end IP address to set the range. The end IP address must be greater than the start IP address.

4. Click OK and you can view the added address.

• In the list of Blocked IPs, you can view the following information:
• IP Address: Displays the IP addresses blocked by Signature-based Protection rules.
• Blocked Until: Displays the time until the IP addresses are blocked. After the specified time, the blocked IP addresses are released.
• In the list of Allowed IPs, you can view the following information:
• IP Address: Displays the IP addresses to allow network connection.

5. To modify or delete the registered IP addresses, select an item in the blocked/allowed list and click Modify or Delete.
6. After configuration, click Apply to apply the settings.
7. Click OK to close the open window.