Table of Contents  MOBOTIX Online Help

IP-Level Access Control

Table of Contents
IP-Level Access Control
Allowing/Denying Access
Rules for Specifying Computers
Resolving IP Addresses and Domain Names
Order of Processing
Sample Configuration

The Access Control dialog allows managing the IP addresses, subnets and domain names, which are allowed to access the camera or which are prevented from accessing the camera. This possibility to control access to the camera uses the IP protocol level, is independent of password-based user authentication on HTTP protocol level and supersedes password-based authentication. If a computer does not have IP-level access to the camera, there is no possibility to reach the camera from that computer. If a computer has IP-level access to the camera, password-based user authentication follows as next step, as specified in the Users and Passwords dialog.

The rules (IP addresses, subnets and domain names) are specified in the Access Rules for Allow and Access Rules for Deny sections of the dialog. The No Match section controls all IP addresses, subnets and domain names, which are not mentioned in one of the other access rules.

Allowing/Denying Access

Access Rule

Description

Allow

If the rule (i.e. IP address/subnet/domain name) applies, access to the camera is granted.

Temporary Allow

If the rule applies, access to the camera is granted. This rule is only used until the next camera reboot.

Deny

If the rule applies, access to the camera is denied.

Temporary Deny

If the rule applies, access to the camera is denied. This rule is only used until the next camera reboot.

Inactive

This rule will be ignored.

Delete rule

This option is only available for existing rules. Activate this checkbox to delete the rule.

Rules for Specifying Computers

Rules can be specified as follows:

Resolving IP Addresses and Domain Names

If you would like to use domain names, make sure that a DNS server has been set in the Ethernet Interface dialog.

Order of Processing

Processing starts when a network device (e.g. computer) tries to establish a TCP/IP connection to the camera's web server. The camera first processes the Access Rules for Allow. If the accessing computer (device) is found in the rules, the camera grants access to the web server. If none of the Access Rules for Allow applies, the Access Rules for Deny are applied. If a Deny access rule applies, the HTTP connection will be closed with an error message. If none of the Allow/Deny rules apply, access is controlled by the setting of the No Match section.

Sample Configuration

Scenario:
Example 1. Configuration

Access Rule

Mode

Rule

Allow

Allow

ftp.mobotix.com

Deny

Deny

.mobotix.com

No match

Allow

-


Storing the Configuration

Click on the Set button to activate your settings and to save them until the next reboot of the camera.

Click on the Factory button to load the factory defaults for this dialog (this button may not be present in all dialogs).

Click on the Restore button to undo your most recent changes that have not been stored in the camera permanently.

Click on the Close button to close the dialog. While closing the dialog, the system checks the entire configuration for changes. If changes are detected, you will be asked if you would like to store the entire configuration permanently.


© 2001-2024 MOBOTIX · https://www.mobotix.com