How to configure an AltaVault Access Control List (ACL)
Applies to
- AltaVault
- Access Control List (ACL)
Description
You can secure access to the AltaVault using an internal management Access Control List
- Using an internal management ACL, you can:
- restrict access to certain interfaces or protocols of an appliance
- restrict inbound IP access to the AltaVault, protecting it from access by hosts that do not have permission
- specify which hosts or groups of hosts can access and manage the AltaVault by IP address
- The Management ACL provides the following safeguards to prevent accidental disconnection from the AltaVault:
- It detects the IP address you are connecting from and displays a warning if you add a rule that denies connections to that address
- It converts well-known port and protocol combinations such as SSH, Telnet, HTTP, HTTPS, SNMP, and SOAP into their default management service and protects these services from disconnection. For example, if you specify protocol 6 (TCP) and port 22, the management ACL converts this port and protocol combination into SSH and protects it from denial
- It also tracks changes to default service ports and automatically updates any references to changed ports in the access rules