Guides
Log In
Guides

How to Create an IP Source

Suggest Edits

Overview

Cyolo allows administrators to control access to applications based on specific criteria, such as IP addresses. This article will guide you through the process of creating an IP source, defining conditions for it, and applying those conditions to application policies.

Prerequisites

Before you begin, ensure you have the following:

  • Admin Access: You must have administrator privileges to create and manage IP sources and conditions.

  • Defined IP Ranges: Identify the IP addresses or IP subnets you want to manage. The IP addresses must be the public IP addresses of the connecting devices.

  • Application Policies: Have a clear understanding of the applications and the conditions you want to apply. For a detailed overview on configuring applications on the Cyolo admin portal, refer to the section: Add Application.

Configuration

  1. Creating an IP Source

  • Log in to the Cyolo admin portal using admin credentials.

  • Navigate to the Policies > IP Source page.

  • Click Add to create a new IP source.

    • In the new window, enter the following information:

      • IP Source Name: Enter a descriptive name for the IP source.

      • IP Address/CIDR: Enter individual IP addresses or IP subnets in CIDR notation. For example, 49.54.32.85, 103.203.72.88/29. Press Enter or Spacebar after each entry.

      • Description: Provide additional information about the IP source for future reference.

      • Click Create to save the new IP source.

Assigning the IP Source to a Conditions Profile

To allow or deny the connection based on the IP source created, it must be assigned to a Conditions profile.

  1. Navigate to the Policies > Conditions page.

  2. Click Add to create a new Conditions profile or edit an existing profile.

  3. Enter the Condition details:

a. Name: Enter a name for the profile.

b. Description: Optionally, add a description to explain the purpose of the condition.

c. Click Next.

d. Enable the checkbox Source IP address

e. Select either Allow or Deny.

f. Click Select IP Source and select the IP source profile from the drop-down menu.

g. Click Save to create or update the Conditions profile.

Applying the Conditions Profile to an Application

The Conditions profile must be associated with an application to control access based on the defined criteria.

  1. Navigate to the Applications page.

  2. Create a new application or edit an existing one to apply the condition.

  3. Scroll down to the Rules section of the application and click the Edit icon.

  4. In the Rule window, click the Conditions drop-down menu, and select the Conditions profile you created.

  5. Click Save to apply the condition to the application.

  1. Click Save again to save the application.

By following these steps, you can create an IP source, set conditions based on that source, and enforce those conditions on application policies, ensuring that access is granted or denied according to your specified criteria.

Additional Notes

  • Zero Trust Security: The principles of zero trust security emphasise the need to verify every request as though it originates from an open network. IP source management is a critical component of this strategy.

  • Best Practices: Regularly review and update IP sources and conditions to adapt to changing security needs and threat landscapes.

  • Troubleshooting: Ensure that the IP address ranges and conditions are correctly configured to avoid unintentional access issues.

Updated 3 days ago