Configuring security and authentication, Introduction, Configuring network ip filtering – Digi CM User Manual

Configuring Security and Authentication

Chapter 7

61

f

Introduction

The Digi CM provides several ways to control access to the network and the
devices on the network. One method is through IP filtering, which allows or
prevents users with specific IP addresses from accessing devices or serial
ports on the network. IP filtering can be permitted or restricted for all ports
globally or on a per port basis. Another access control method involves
restricting or permitting specific users. Users can be easily added or removed
from either a restricted or permitted users list. Sniff session access, which
allows multiple users to access a single port, is also discussed.

The Digi CM provides for various authentication methods. They are: Local,
RADIUS, TACACS+, LDAP, and Kerberos. Authentication may be configured
where a secondary method is attempted if the primary method fails.

Configuring Network IP Filtering

The Digi CM offers built-in firewall functionality to limit TCP/IP traffic to and
from certain networks, TCP ports and interfaces. The functionality
implemented is based on the Linux tool IPtables.

Chapter 7

C o n f i g u r i n g S e c u r i t y a n d A u t h e n t i c a t i o n

serial

192.168.1.108

Filter IP: 192.168.1.0

Filter Mask: 255.255.255.0

192.168.5.10

192.168.5.10

192.168.1.108