Adding A Host To The Whitelist - D-Link NetDefendOS User Manual

It is also important to understand that although whitelisting prevents a particular source from
being blacklisted, it still does not prevent NetDefendOS mechanisms such as threshold rules
from dropping or denying connections from that source. What whitelisting does is prevent a
source being added to a blacklist if that is the action a rule has specified.
For further details on usage see Section 6.6.7, "Setting Up IDP" and Section 10.3, "Threshold Rules".
Note: The content filtering blacklist is separate
Content filtering blacklisting is a separate subject and uses a separate logical list (see
Section 6.3, "Web Content Filtering").
The CLI blacklist Command
The blacklist command can be used to look at as well as manipulate the current contents of the
blacklist and the whitelist. The current blacklist can be viewed with the command:
gw-world:/> blacklist -show -black
This blacklist command can be used to remove a host from the blacklist using the -unblock
option.
Example 6.33. Adding a Host to the Whitelist
In this example we will add an IP address object called white_ip to the whitelist. This will mean
this IP address can never be blacklisted.
Command-Line Interface
gw-world:/> add BlacklistWhiteHost Addresses=white_ip Service=all_tcp
Web Interface
1. Go to: System > Advanced Settings > Whitelist > Add > Whitelist host
2. Now select the IP address object white_ip so it is added to the whitelist
3. Select the service all_tcp to be associated with this whitelist entry
4. Click OK
572
Chapter 6: Security Mechanisms