Adding a host to the whitelist – Amer Networks E5Web GUI User Manual

It is also important to understand that although whitelisting prevents a particular source from
being blacklisted, it still does not prevent cOS Core mechanisms such as threshold rules from
dropping or denying connections from that source. What whitelisting does is prevent a source
being added to a blacklist if that is the action a rule has specified.

For further details on usage see Section 6.5.7, “Setting Up IDP” and Section 10.3, “Threshold Rules”.

Note: The content filtering blacklist is separate

Content filtering blacklisting is a separate subject and uses a separate logical list (see
Section 6.3, “Web Content Filtering”).

The CLI blacklist Command

The blacklist command can be used to look at as well as manipulate the current contents of the
blacklist and the whitelist. The current blacklist can be viewed with the command:

Device:/> blacklist -show -black

This blacklist command can be used to remove a host from the blacklist using the -unblock
option.

Example 6.22. Adding a Host to the Whitelist

In this example we will add an IP address object called white_ip to the whitelist. This will mean
this IP address can never be blacklisted.

Command-Line Interface

Device:/> add BlacklistWhiteHost Addresses=white_ip Service=all_tcp

InControl

Follow the same steps used for the Web Interface below.

Web Interface

1.

Go to: System > Whitelist > Add > Whitelist host

2.

Now select the IP address object white_ip so it is added to the whitelist

3.

Select the service all_tcp to be associated with this whitelist entry

4.

Click OK

Chapter 6: Security Mechanisms

487