DNS/DHCP Server firewall - BlueCat Integrity

DNS/DHCP Server firewall - BlueCat Integrity - 26.1.0

Address Manager Administration Guide

ft:locale

en-US

Product name

BlueCat Integrity

Version

26.1.0

The following describes how to enable/disable the DNS/DHCP Server firewall.

You should ONLY disable the firewall for testing, debugging, or diagnostic purposes.

Warning: The DNS/DHCP Server firewall is enabled by default. it's used to secure the server against attack. BlueCat strongly advises against disabling the firewall. Disabling the firewall should only be performed for servers in a secure environment and only for short periods of time.

To configure the firewall on a DNS/DHCP Server appliance:

Select the Servers tab in the sidebar, then select Servers.
Select the name of a server.
Select the Services tab.
Under Server management and configuration, locate the Firewall service panel and select Edit service.
Set the following parameter:
- Enabled—select this check box to enable the DNS/DHCP Server firewall; deselect this check box to disable the DNS/DHCP Server firewall.
  Important: The DNS/DHCP Server Firewall is used to secure the server against attack. BlueCat strongly advises against disabling the firewall. Disabling the firewall should only be performed for servers in a secure environment and only for short periods of time.
- Ping allowed—applicable when firewall service is enabled (ping cannot be blocked if firewall service is disabled). Select this checkbox to allow the DNS/DHCP Server to ping other devices and be pinged; deselect this checkbox to block pings.
  Attention:
  - This option is not supported for DNS/DHCP Servers operating in an xHA pair. Applying this option to an xHA pair will only affect the current active server. Configure Ping allowed settings on DNS/DHCP servers individually before pairing. To work with an existing xHA pair, users can configure Ping allowed on the active, perform a failover, then configure it again on the new active.
Select Save.