Restricting the range of IP addresses allowed to log in to Barracuda RMM provides additional security by ensuring users from unknown IP addresses can’t log in.
Users that attempt to log in from an address outside the allowed range see a message informing them they are not permitted to log in. However, these users are not permanently blocked from logging in. Once they return to an allowed IP range, they can log in.
If an administrator restricts an IP address that a currently logged in user is using, that user is not immediately blocked. However, that user is blocked the next time they attempt to log in from that IP address.
When configuring a range of IP addresses to allow, the addresses you type in the Start IP Address and End IP Address boxes are allowed.
When a user attempts to log in from a restricted IP address, an entry is created in the User History.
To configure range of IP addresses allowed to log in
This procedure identifies a list of IP addresses that are allowed to log in when IP restriction is enabled. To enable IP restriction, see the To restrict the IP addresses that can log in procedure below.
- In Service Center, click Configuration > System Settings.
- Click the Authentication tab.
- Click Add.
- Do one of the following:
- To block an IP address, click Single, then type a valid IPv4 IP address.
- To block a range of IP addresses, click Range, then type a valid IPv4 IP address in Start IP Address and in End IP Address.
- To block a subnet mask, click Subnet Mask, then type a subnet in the box and choose a subnet host count.
- Optionally, type a description.
- Click Save.
- Repeat steps 4-6 until all the addresses you want to include are in the Allowed IP Ranges list.
To restrict the IP addresses that can log in
- In Service Center, click Configuration > System Settings.
- Click the Authentication tab.
- Select the check boxes of the IP addresses to allow.
- Select Enable IP Restriction.
- Click Save.