ZyXEL UAG4100 User Guide - Page 501
Service Access Limitations, System Timeout
View all ZyXEL UAG4100 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 501 highlights
Chapter 46 System Table 240 Configuration > System > DNS > Service Control Rule Add (continued) LABEL Action DESCRIPTION Select Accept to have the UAG allow the DNS queries from the specified computer. OK Cancel Select Deny to have the UAG reject the DNS queries from the specified computer. Click OK to save your customized settings and exit this screen. Click Cancel to exit this screen without saving 46.7 WWW Overview The following figure shows secure and insecure management of the UAG coming in from the WAN. HTTPS and SSH access are secure. HTTP and Telnet access are not secure. Note: To allow the UAG to be accessed from a specified computer using a service, make sure you do not have a service control rule or to-Device security policy to block that traffic. • See To-Device Rules on page 290 for more on To-Device security policies. To stop a service from accessing the UAG, clear Enable in the corresponding service screen. 46.7.1 Service Access Limitations A service cannot be used to access the UAG when: 1 You have disabled that service in the corresponding screen. 2 The allowed IP address (address object) in the Service Control table does not match the client IP address (the UAG disallows the session). 3 The IP address (address object) in the Service Control table is not in the allowed zone or the action is set to Deny. 4 There is a security policy that blocks it. 46.7.2 System Timeout There is a lease timeout for administrators. The UAG automatically logs you out if the management session remains idle for longer than this timeout period. The management session does not time out when a statistics screen is polling. Each user is also forced to log in the UAG for authentication again when the reauthentication time expires. You can change the timeout settings in the User/Group screens. UAG Series User's Guide 501