IP Restrictions is a feature that allows you to limit access to your LogonBox system based on the IP Address of the system connecting in. For example, you could limit access to a specific IP or restrict access from other IPs that might be causing you issues.
Creating an IP Restriction for a single address
It's possible to create IP Restrictions that either Allow or Deny access to the IP's configured. To begin select the Create option to open the Create IP Restriction window.
1. For the address simply set the IP address that this is to affect.
2. Choose which of the server's services this rule is to be applied to.
3. Set if this rule is to Allow or Deny access.
4. Click the Create button to confirm the creation of the restriction and add it to the table.
With this one entry submitted the server will currently allow access to any connections that are not from the single denied address.
Setting an IP Restriction with a wildcard address
If you are setting restrictions on a number of IPs that are within the same subnet then there is a faster way to add these restrictions with a single entry. When setting the address for the restriction enter the * wildcard character in order to specify a full subnet.
In this example the restriction will apply to all IP addresses that are in 192.168.5 subnet, 192.168.5.0 through to 192.168.5.255.
Creating an IP Restriction using a CIDR
The final method that can be used to create IP Restrictions is via a CIDR address, granting some greater control over the range of IPs that can be restricted compared to the wildcard method. This time when entering the Address that the restriction is valid for you want to include the appropriate subnet relevant for the IPs it will cover.
In this example, we're providing the subnet that covers the 256 addresses that are in the 192.168.0 subnet, similar to how the previous wildcard entry did for the network we specified there. But here a different subnet range could be used that covers more or less IP addresses.
Creating an Allow IP Restriction
All of the IP Restrictions we covered in the previous sections all used the Deny operation to block access to those addresses. IP Restrictions can also be used to Allow access, when this is used the server will then begin to block access to the system from any address that is not included in an Allow restriction. It's recommended that if you want to use this mode then the first entry you add should include the IP address you're currently using to avoid being blocked access accidentally.
What happens if you attempt to connect to the server using a blocked IP Address
If someone tries to access your server from a blocked IP address then the server will treat this connection attempt similar to a firewall rule and will present a connection failure message.
The message varies based on the browser that is being used. This way the person using the blocked IP will not even be presented with a login page.
