Securing Services via IP Filters

Valid for: enaio version 8.50 SP1

You can configure what incoming IP addresses are allowed to access the services by setting an IP filter in the configuration of enaio services-admin.

The standard setting is trusted.ipPattern: '.*' and permits access by all IP addresses.

To be able to configure a filter, proceed as follows.

  1. Open the file …\services\service-manager\config\application-prod.yml in a text editor.
  2. Assign the desired IP addresses to the parameter trusted.ipPattern.

  3. Save the configuration and restart enaio services-admin.

In a list of IP addresses, each address must always be placed in brackets. Addresses are separated by the pipe sign '|'. Dots in IP addresses must be preceded by the escape character '\'. However, no escape character is required before colons in IPv6 addresses.

Examples

Permitted access Example configuration
By all IP addresses .*
Only by specified address 10\.10\.10\.10
By multiple addresses (10.10.10.10)|(10.10.10.11)| ... (10.10.10.1x)