Page 16 - 72 Xerox Document Centre System Administration GuideSetting SecurityThe HTTP Settings pages are used to set up access to the DocumentCentre’s embedded HTTP server. You can set up security bydefining IP address restrictions.Users are then restricted from accessing certain web pages (filesand directories) unless they have the appropriate client IP address.The security settings are saved in a configuration file for thespecific Document Centre’s embedded HTTP server and apply onlyto that HTTP server.Defining IP RestrictionsThe Edit IP Restriction Settings Page is used to define the IPaddresses that can or cannot access certain web pages (files ordirectories) on the embedded HTTP server. By entering an IPaddress and clicking the appropriate button, you can allow orrestrict access.NOTE Ensure that you know your network configuration and user’sbrowser configurations. The HTTP Server allows/restricts access tothe IP addresses as they appear in the list. For example, if usersconnect through a proxy server to access a Document Centre, theproxy server’s IP address needs to be restricted to restrict the accessof those particular users.An asterisk (*) can be used in the address as a wildcard. Using thewildcard includes or restricts (depending whether you are allowingor restricting access) all host addresses and/or subnet addresses. Forexample, 192.246.238.* references a subnet, 192.246.* references awider subnet, 192.* references the widest subnet, and * referencesall host addresses.When a request is made to access the web site, the embedded HTTPserver checks the IP Address Permissions list to determine if therequesting IP address is allowed access. The HTTP server begins atthe top of the list and stops when it finds the first entry that matchesthe IP address requesting access.If there are two entries that correspond to the same IP address, thefirst one in the list is used. The list explicitly determines access;