Address Manager v9.5.0 introduces a new firewall for Address Manager. The new Address Manager firewall increases resilience by adding additional firewall capabilities that were previously only available for DNS/DHCP Server appliances. This section describes configuration of the firewall through the Address Manager user interface. The firewall can also be configured through the Administration Console, refer to Address Manager firewall for more information.
Warning: Upon an
upgrade to Address Manager v9.5.0, ping settings will match the
previous configuration. However, enabling the new firewall
option in Address Manager will replace the previous
firewall configuration with the new default ruleset. Previous
manually created firewall rules will not migrate automatically
and must be configured on the new firewall. Refer to the
Customer Care portal (KI-17762) for more
information on migrating existing firewall rules to the new
firewall.
Warning: BlueCat strongly advises against
disabling the Address Manager
firewall. Disabling the firewall should only be
performed for servers in a secure environment and only for short
periods of time.
To configure the Address Manager firewall through the user interface:
- Select the Administration tab. Tabs remember the page you last worked on, so select the tab again to ensure you're on the Administration page.
- Under General, click Service Configuration.
- From the Service Type drop-down menu, select Firewall.
- Under General Settings, set the following
parameters:
- Enable Firewall Service—select this check box to enable the firewall; deselect this check box to disable the firewall.
- Allow Ping—applicable when firewall service is enabled (ping cannot be blocked if firewall service is disabled). Select this checkbox to allow the Address Manager server to be pinged; deselect this checkbox to block pings.