The Administrative Account User can click on the Edit button to view and/or edit any of these configuration options in the Protocols subsection. Enable protocols and configure UDP/IP, TCP/IP and SSL policies, along with address restrictions (white listing). From the Port drop-down list box, type the port or select the standard port (default), and then check the Enabled checkbox to enable any of the following protocols:
UDP/IP
TCP/IP
SSL
HTTPSYS (network protocol shared with Web Console via IIS; introduced in v13.0]
Note that for a port change to take effect, please restart the PC-Duo Gateway Service.
Address Bindings
For the TCP/IP or SSL protocol, click Bindings to select addresses to which the selected protocol should bind. By default, all possible addresses are selected but the user can use this option to restrict binding to selected addresses or to no addresses. This option allows the RAS Server administrator to configure specific ports on a multi-homed machine.
Address Restrictions
For the TCP/IP or SSL protocol, click Host to configure address restrictions on connections to Host computers. Click Other Clients to configure address restrictions on connections to client computers running PC-Duo Master. The windows that appear after clicking Host and Other Clients are similar to the one shown below for TCP Host Address Restrictions.
Select one of the following default policies for TCP/IP or SSL protocols for the AddressRestrictions window:
Granted access to grant access to all addresses except those addresses listed in the text box.
Denied access to deny access to all addresses except those addresses listed in the text box.
If you are using SSL, you can also click the View Cert button to see the currently installed certificate; see the Gateway Certificate Manager section in the Installation chapter to manage the SSL certificate the server uses. Click Add to add an address to your TCP/IP or SSL policy exception list. Depending on your policy, either the Grant Access On window or the Deny Access On window appear.
Specify one of the following address exception options:
Select Single computer (at one IP address) to specify one exception to your TCP/IP or SSL policy.
Select Group of computers (by subnet mask) to specify an exception to your TCP/IP or SSL policy for a group of addresses. You can specify the group of addresses via a single address and a subnet mask.
Select Group of computers (by start address and count) to specify the exception rule for a group of computers by counting addresses from one starting address.
Select Single computer (at one IPV6 address) to specify one exception to your TCP/IP or SSL policy.
Select Group of computers (by IPV6 subnet mask) to specify an exception to your TCP/IP or SSL policy for a group of addresses. You can specify the group of addresses via a single address and a subnet mask.
SSL Certificate
For the SSL protocol, the real-time status of any SSL certificates is shown in the SSL Certificate box. Click View Cert to view the currently installed security certificate. Certificates are selected and managed using the PC-Duo Gateway Certificate Manager.