Kemp Support, how can we help?

The latest application delivery knowledge and expertise at your fingertips.

Remote Access - behavior of HTTP/S and SSH rules

 

Information

 

Summary:

Description of the behavior of HTTP/S and SSH firewall switches on the Remote Access page in the GUI.

Environment:

Product: Flowmon OS

Version: Any

Platform: Any

Question/Problem Description:

Why are the active firewall rules dest port 80/HTTP and dest port 443/HTTPS denied?

Steps to Reproduce:  
Error Message:  
Defect Number:  
Enhancement Number:  
Cause:  
Resolution:

Switches for HTTP and HTTPS are always disabled

  • in state ACCEPT when no IP addresses are set in Access restriction settings or
  • in state REJECT when one or more IP addresses are set in Access restriction settings.

Users cannot change this configuration. The only way to control access to the appliance via HTTP and HTTPS is to set allowed addresses or ranges access restriction settings.

Switch for SSH is enabled and changes behavior based on the content of Access restriction settings
when no IP addresses are set in Access restriction settings,

  • in state ACCEPT, all connection attempts will pass through the firewall,
  • in state REJECT, no connection attempts will pass through the firewall,

when one or more IP addresses are set in Access restriction settings,

  • in state ACCEPT, connection attempts from listed IP addresses or address ranges will pass through the firewall,
  • in state REJECT, no connection attempts will pass through the firewall.

All other rules behave independently and do NOT take into account the content of Access

Workaround:  
Notes:  

Was this article helpful?
0 out of 0 found this helpful

Comments