Managing access rules¶

Access rules are displayed in a table on both the node and the node group details pages. The procedures are identical for both nodes and node groups.

Adding an access rule
Editing an access rule
Deleting an access rule

Adding an access rule ¶

To add an access rule, click the button next to the header on the Access Rules table. This will open the Add access rule modal. From here you can specify the following information. Fields marked with an asterisk are required.

Action *¶

The action to take when the rule matches a packet. ALLOW lets the packet through. DENY drops the packet with no further action. REJECT drops the packet and sends an ICMP or ICMPv6 admin-prohibited message.

Order *¶

The relative order of the rule. Rules with lower orders are evaluated before rules with higher orders. Multiple rules can have the same order. In this case, the order that the rules will be processed is undefined.

Description¶

An optional description of the rule.

Input interfaces¶

Any interfaces the access rule will be enforced on.

Protocols¶

Any packet protocols the access rule will apply to.

Source networks¶

Any source networks the access rule will apply to, in CIDR-format.

Destination networks¶

Any destination networks the access rule will apply to, in CIDR-format.

Source ports¶

Any source ports the access rule will apply to. Ports only apply to TCP, UDP, SCTP, and DCCP traffic.

Destination ports¶

Any destination ports the access rule will apply to. Ports only apply to TCP, UDP, SCTP, and DCCP traffic.

Editing an access rule ¶

To edit an access rule, click the button in the Actions column of the corresponding row in the Access Rules table. This will open the Edit access rule modal.

Deleting an access rule ¶

To delete an access rule, click the button in the Actions column. This will ask you to confirm before the access rule is permanently deleted.