Avocent PS/2 IP Switch User Manual


 
8/16/32 PS/2 KVM over IP switch
49
6.4.3 Security
Figure 6-22. Device Security
Force HTTPS
If this option is enabled access to the web front-end is only possible using an HTTPS
connection. The PS/2 IP-KVM switch will not listen on the HTTP port for incoming
connections.
In case you want to create your own SSL certificate that is used to identify the PS/2
IP-KVM switch refer to the Section called Certificate.
KVM encryption
This option controls the encryption of the RFB protocol. RFB is used by the Remote
Console to transmit both the screen data to the administrator machine and keyboard and
mouse data back to the host. If set to `Off' no encryption will be used. If set to `Try' the
applet tries to make an encrypted connection. In case connection establishment fails for
any reason an unencrypted connection will be used.
If set to “Force” the applet tries to make an encrypted connection. An error will be
reported in case connection establishment fails.
IP Access Control
This section explains the settings related to IP access control. It is used to limit the
access to a distinguished number of clients only. These clients will be identified by their
IP address from which they are trying to build up a connection.
Warning
The IP access control settings apply to the LAN interface only!
Enable IP Access Control
Enables access control based on IP source addresses.
Default policy
This option controls what to do with arriving IP packets that do not match any of the
configured rules. They can be accepted or dropped.
Warning
If you set this to “DROP” and you have no “ACCEPT” rules configured, the
access to the web front-end over LAN is actually impossible! To enable access
again you can change the security settings via modem or by temporarily disabling
IP access control with the initial configuration procedure (see Table 4-1)
Rule Number
This should contain the number of a rule for which the following commands will apply. In
case of appending a new rule, this field will be ignored.