IP filtering settings

Some Digi devices support built-in firewall functionality to limit TCP/IP traffic to and from certain networks, TCP ports, and interfaces. The functionality implemented is based on the iptables tool.

You can restrict your Digi device on the network by only allowing certain devices or networks to connect. This is better known as IP Filtering or Access Control Lists (ACL). By enabling IP filtering, you are telling the Digi device to only accept connections from specific and known IP addresses or networks. You can filter devices on a single IP address or restrict device to a group of devices using a subnet mask that only allows specific networks to access to the device.

CAUTION! Plan and review your IP filtering settings before applying them. If the settings are incorrect, the Digi device will be inaccessible from the network.

The settings for IP Filtering Settings include:

• Only allow access from the following devices and networks: Enables IP filtering so that only the specified devices or networks are allowed to connect to and access the device. Note that if you enable this feature and the system from which you are connecting to the Digi device is not included in the list of allowed devices or networks, then you will instantly no longer be able to communicate or configure the device from this system.
  • Automatically allow access from all devices on the local subnet: Specifies that all systems and devices on the same local subnet or network of the device are allowed to connect to the device.
  • Allow access from the following devices: A list of IP addresses of systems or devices that are allowed to connect to this device.
  • Allow access from the following networks: A list of networks based on an IP address and matching subnet mask that are allowed to connect to this device. This option allows grouping several devices that exist on a particular subnet or network to connect to the device without having to manually specific each individual IP address.