×
Discuss about Archiving, Close of Business, Delivery Setup, Security Management System, Global Processing etc…
Utilize client ip address in T24
- abi
- Topic Author
- Offline
- New Member
-
Less
More
- Posts: 7
- Thank you received: 0
2 weeks 2 days ago #24816
by abi
Utilize client ip address in T24 was created by abi
Hi everyone,
So this is a new challenge question.
We have loadbalancer in front of browserWeb of T24
And we are using x-forward-for but how can we ise this
To include the user login ip address as part of log activity
2nd how can we or if we can utilize the below idea in the link to verify the source ip that the user will be coming from certain ip to qllow or deny?
www.scribd.com/document/842664544/How-to...ic-IP-addresses-Copy
So this is a new challenge question.
We have loadbalancer in front of browserWeb of T24
And we are using x-forward-for but how can we ise this
To include the user login ip address as part of log activity
2nd how can we or if we can utilize the below idea in the link to verify the source ip that the user will be coming from certain ip to qllow or deny?
www.scribd.com/document/842664544/How-to...ic-IP-addresses-Copy
Please Log in or Create an account to join the conversation.
- VK
-
- Offline
- Platinum Member
-
- Globus:G9-G13|TAFC:R05-R23|TAFJ:R19,R23,R24:test
Less
More
- Posts: 1220
- Thank you received: 158
2 weeks 1 day ago #24818
by VK
Cheers
VK
Replied by VK on topic Utilize client ip address in T24
Hi
I think that an idea to add network security check to application level isn't a good one.
Such things are to be done at the firewall.
I think that an idea to add network security check to application level isn't a good one.
Such things are to be done at the firewall.
Cheers
VK
Please Log in or Create an account to join the conversation.
- abi
- Topic Author
- Offline
- New Member
-
Less
More
- Posts: 7
- Thank you received: 0
2 weeks 1 day ago #24820
by abi
Replied by abi on topic Utilize client ip address in T24
The firewall will not inspect https traffic to verify the username and ip address. Such information can be available to the app level where the ssl will be terminated.
Please Log in or Create an account to join the conversation.
- VK
-
- Offline
- Platinum Member
-
- Globus:G9-G13|TAFC:R05-R23|TAFJ:R19,R23,R24:test
Less
More
- Posts: 1220
- Thank you received: 158
2 weeks 1 day ago #24821
by VK
Cheers
VK
Replied by VK on topic Utilize client ip address in T24
OK, what about opening the server port (443) only for valid IP addresses?
Cheers
VK
Please Log in or Create an account to join the conversation.
- abi
- Topic Author
- Offline
- New Member
-
Less
More
- Posts: 7
- Thank you received: 0
2 weeks 1 day ago #24822
by abi
Replied by abi on topic Utilize client ip address in T24
The risk is the operator who is allowed access can know the service account password like the ones used for doing FT transactions, he will still can use the account and utilize the privileges assigned to the service accounts that he is not authorized to by default. Not to mention if it was a VPN meaning he might be allowed lower privileges compared to his normal account when in office.
Please Log in or Create an account to join the conversation.
Time to create page: 0.029 seconds