This is an old revision of the document!
VPOP3 can be configured to restrict access to its various services depending on the client computer's IP address. This is useful if you want to allow access from only certain IP addresses (eg within your LAN) and prevent access from other IP addresses (eg the Internet).
With some services you can also restrict access to certain users on those IP addresses. These are generally only those services which require some form of logon (eg POP3, WebMail etc)
To secure a service, go to the Services
tab in VPOP3, and click on the service you want to secure. You should find in there a box called Access Restrictions
. In that box each line defines an access restriction rule. The parts to that rule are as follows:
This is best clarified with an example:
!192.168.0.1
192.168.0.0 255.255.0.0
0.0.0.0 0.0.0.0 fred bob
This means:
Notes
NOAUTH
. This means that access from the specified IP addresses does not require authentication0.0.0.0 0.0.0.0
to mean 'allow access from anywhere'0.0.0.0 0.0.0.0
line was put at the start, the rest of the rules would be ignored because that first line would match all IP addresses.
On the service specific access restrictions, if the address is allowed, then VPOP3 will check the global access restrictions on the Services page, unless NOGLOBAL
is specified in the service specific restrictions. So, if you are modifying service specific access restrictions it is probably best to add a line saying NOGLOBAL
to prevent the global access restrictions from overriding the changes.