Log into the ASL GUI, click on the ASL tab and select the Blocking menu option. This will open the window of any IPs ASL is blocking. Select the Whitelist tab, and at the bottom of the window type in the IP address or network you wish to whitelist. Then click the "Add to Whitelist" button.
You can also do this from the command by running this command as root:
asl -wl <IP to whitelist>
asl -wl <network to whitelist>
Examples:
asl -wl 111.222.333.444
asl -wl 111.222.333.0/24
asl -wl 1.2.3.4 1.2.3.5 1.2.3.6
Keep in mind that whitelisting an IP means that it will never be shunned by ASL, even if an actual malicious action is launched from the IP.
Note: If you want the firewall to completely whitelist an IP, please enabled this option:
https://www.atomicorp.com/wiki/index.php/ASL_firewall#FW_WHITELIST
Note: The WAF in ASL will still block the attack if it can detect it, but it will not shun the IP.
Important Note: If you want the WAF to also ignore all attacks from your whitelisted IPs, enable this option:
https://www.atomicorp.com/wiki/index.php/ASL_WAF#MODSEC_00_WHITELIST
Important Note: If you also want to allow all traffic from hosts on the whitelist, enable this option:
https://www.atomicorp.com/wiki/index.php/ASL_firewall#FW_WHITELIST
Comments
0 comments
Please sign in to leave a comment.