Access
You can define access rules for Proxy Server by specifying the source and destination IP/Hostnames. Proxy Server enforces rules starting from top-most rule. If any rule matches, Proxy Server will allow or deny the HTTP request according to that rule. See Access Rule Priority for more information.
To create a new access rule:
- On the Access Control page, click Create.
- Select Allow or Deny from Action to determine the behavior of this rule.
-
Next, select from four options in Type to determine the access argument format of this rule. Then enter the appropriate IP address or hostname in IP or Hostname according to the option you select for Type.
- Source IP: Determine which users can access Proxy Server by entering their IP address.
- Source hostname: Determine which users can access Proxy Server by entering their hostname. To use this feature, a DNS server capable of DNS reverse lookup must be set up with Proxy Server.
- Destination IP: Determine which destination servers Proxy Server can access by entering the server IP address.
- Destination hostname: Determine which destination servers Proxy Server can access by entering the server hostname.
- After you finish, click OK to save this new access rule.
- Click Save to save your changes.
Note:
- Valid formats for IP addresses entered in IP or Hostname include:
- Single IP address (e.g., 192.168.1.3).
- IP address and netmask using CIDR notation (e.g., 10.0.0.0/8).
- Valid formats for hostnames entered in IP or Hostname include:
- Hostname without "www" (e.g., To deny access to www.synology.com, enter .synology.com.)
- For each access rule, you can specify multiple access arguments of same access type. Each access argument should be separated by a space (e.g., 10.0.0.0/8 192.168.0.0/16 172.16.0.0/12).
To edit an existing access rule:
- Select an access rule.
- Click Edit.
- After you finish click OK to save your edited access rule.
- Click Save to save your changes.
To delete an existing access rule:
- Select an access rule.
- Click Delete.
- Click Save to save your changes.
To order access rules:
- Select an access rule.
- Click Up to move a rule up.
- Click Down to move a rule down.
- Click Save to save your changes.
Note:
- You also can use drag and drop to rearrange rules.
Access Rule Priority
For each HTTP request, Proxy Server will check access rules to determine if this request should be denied or allowed. The top-most rule has highest priority, meaning Proxy Server will enforce access rules from top to bottom. If there is a rule matching the request, Proxy Server will use that matching rule to deny or allow this request. You can rearrange all deny rules to have higher priority than allow rules to guarantee deny rules will be matched prior to allow rules. If no rules are matched, Proxy Server will deny HTTP requests by default.