Ensure 'HTTP source restriction' is set to an authorized IP address

Details

Determines the client IP addresses that are allowed to connect to the security appliance through HTTP



Rationale:



One key element of securing the network is the security of management access to the infrastructure devices. It is critical to establish the appropriate controls in order to prevent unauthorized access to infrastructure devices. One of them is permitting only authorized originators to attempt device management access. This ensures that the processing of access requests is restricted to an authorized source IP address, thus reducing the risk of unauthorized access and the exposure to other attacks, such as brute force, dictionary, or DoS attacks.


Solution

Use the Data Interfaces tab on Device > System Settings > Management Access


Supportive Information

The following resource is also helpful.

This control applies to the following type of system Cisco.


Source