How to Restrict Access to Specific Port(s) and Allow ICMP to a Backend Resource

03/26/2020 10 10070

DESCRIPTION:
How to Restrict Access to Specific Port(s) and Allow ICMP to a Backend Resource

RESOLUTION:

Question/Topic:

This article describes a scenario in which an administrator needs to allow access to a backend server through just certain ports; the administrator also needs to allow ICMP to that host. In the following procedure, port 443 and ICMP will be allowed to a specific host by creating two access control rules.

Procedure:

1. Log in to AMC.
2. Click Access Control in the main navigation menu.
3. From the list of the rules, select an existing rule or use the New button to create a new rule.
4. In the From field select a user or group that should be granted access to the resource.
5. In the To field select the backend resource, resources, or resource group, and then click Next to go to the Advanced section.
6. In the Advanced section under Access method restrictions, restrict the Protocols to ICMP:
   
7. Click Finish to save the rule.
8. Create a second rule that allows your users or groups to connect to the same resource, resources, or resource group: under the Advanced section of the rule, restrict the Protocols to TCP and enter port 443 (you can also specify multiple ports) as shown in the following screenshots: