Kerio Tech KERIO WINROUTE FIREWALL 6 User Manual Page 137
- Page / 368
- Table of contents
- BOOKMARKS
Rated. / 5. Based on customer reviews
137
Chapter 10
User Authentication
WinRoute allows administrators to monitor connections (packet, connection, Web pages or
FTP objects and command filtering) related to each user. The username in each filtering rule
represents the IP address of the host(s) from which the user is connected (i.e. all hosts the
user is currently connected from). This implies that a user group represents all IP addresses
its members are currently connected from.
Besides access restrictions, user authentication can be used also for monitoring of their activ-
ities in the Kerio StaR interface (see chapter
21), in logs (see chapter 22), in the list of opened
connections (see chapter 19.2) and in the overview of hosts and users (see chapter 19.1). If
there is no user connected from a certain host, only the IP address of the host will be displayed
in the logs and statistics. In statistics, this host’s traffic will be included in the group of not
logged in users.
10.1 Firewall User Authentication
Any user with their own account in WinRoute can authenticate at the firewall (regardless their
access rights). Users can connect:
• Manually — by opening the WinRoute web interface in their browser
https://server:4081/ or http://server:4080/
(the name of the server and the port numbers are examples only — see chapter 11).
It is also possible to authenticate for viewing of the web statistics (see chapter 21) at
https://server:4081/star or http://server:4080/star
Note: Login to the Web Administration interface at
https://server:4081/admin or http://server:4080/admin
is not equal to user authentication at the firewall (i.e. the user does not get authenti-
cated at the firewall by the login)!
• Automatically — IP addresses of hosts from which they will be authenticated auto-
matically can be associated with individual users. This actually means that whenever
traffic coming from the particular host is detected, WinRoute assumes that it is cur-
rently used by the particular user , and the user is considered being authenticated
from the IP address. However, users may authenticate from other hosts (using the
methods described above).
IP addresses for automatic authentication can be set during definition of user account
(see chapter 15.1).
This authentication method is not recommended for cases where hosts are used by
multiple users (user’s identity might be misused easily).
- Kerio WinRoute Firewall 6 1
- Contents 3
- Quick Checklist 7
- Introduction 9
- 2.2 Conflicting software 10
- 2.3 System requirements 11
- 2.4 Installation - Windows 12
- Sharing 15
- 2.9 WinRoute Components 23
- WinRoute Administration 27
- Chapter 4 32
- 4.2 License information 33
- 4.6 User counter 45
- Network interfaces 47
- Figure 5.2 Editing interfaces 50
- Internet Connection 53
- 6.3 Connection Failover 62
- Chapter 6 Internet Connection 64
- 6.4 Network Load Balancing 66
- Traffic Policy 71
- 7.2 How traffic rules work 78
- 7.4 Basic Traffic Rule Types 90
- 7.5 Policy routing 95
- 7.8 Use of Full cone NAT 101
- 7.9 Media hairpinning 102
- Chapter 8 104
- 8.1 DNS module 104
- Figure 8.1 DNS settings 105
- 8.2 DHCP server 110
- 8.4 Proxy server 121
- 8.5 HTTP cache 124
- Bandwidth Limiter 130
- User Authentication 137
- Web Interface 141
- HTTP and FTP filtering 147
- 12.2 URL Rules 148
- 12.5 FTP Policy 162
- Antivirus control 167
- 13.3 HTTP and FTP scanning 172
- 13.4 Email scanning 176
- Definitions 180
- 14.2 Time Ranges 181
- 14.3 Services 183
- 14.4 URL Groups 187
- Description 189
- User Accounts and Groups 190
- 15.2 Local user accounts 193
- Step 1 — basic information 194
- 15.5 User groups 210
- Administrative settings 214
- 16.3 Update Checking 216
- Advanced security features 218
- Other settings 224
- 18.3 Relay SMTP server 229
- Status Information 231
- 19.4 Alerts 243
- Figure 19.12 Alert Definitions 244
- Basic statistics 248
- Figure 20.1 User statistics 249
- 20.2 Interface statistics 250
- Chapter 21 254
- Chapter 22 262
- 22.1 Log settings 262
- Figure 22.1 Log settings 263
- Chapter 22 Logs 264
- Syslog Logging 264
- 22.2 Logs Context Menu 265
- 22.3 Alert Log 269
- 22.4 Config Log 269
- 22.5 Connection Log 270
- 22.6 Debug Log 271
- 22.7 Dial Log 273
- 22.8 Error Log 275
- 22.9 Filter Log 276
- 22.10 Http log 277
- 22.11 Security Log 278
- 22.12 Sslvpn Log 280
- 22.13 Warning Log 280
- 22.14 Web Log 281
- Kerio VPN 283
- 23.1 VPN Server Configuration 284
- Chapter 23 Kerio VPN 320
- Paris branch office server 332
- Chapter 24 335
- Chapter 25 338
- 25.2 Configuration files 339
- Technical support 351
- 26.2 Tested in Beta version 352
- Legal Notices 353
- Used open source items 354
- Glossary of terms 357
© 2020, manymanuals.com. All rights reserved. | 1.445 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comments to this Manuals