Previous page

Next page

Locate page in Contents

Using Filtering Rules

Filtering is a feature that allows you to control who can access a particular published resource. You can define filtering rules based on any of the following:

  • User
  • Client (managed client)
  • IP address
  • MAC address
  • Gateway

By default, no filtering rules exist for any given published resource, therefore it will be available to anyone who is connected to a Parallels RAS farm. Once you specify a filtering rule for a published resource, only those users/computers who satisfy the criteria will be able to use it.

To create a filtering rule, select a published resource in the Published Resources tree and click the Filtering tab. Define a rule based on a specific criteria as described below.

Filtering by user

To allow a user (or multiple users) or a user group to access the published resource:

  1. Select User in the Search Filtering Type drop down list.
  2. Select the Allow the following Users option.
  3. In the Default Object Type drop-down list, select whether this rule will apply to users, groups, or both.
  4. In the Browse Mode drop-down list, select the browsing mode you would like to use to connect to Active Directory or Windows.

    The options are:

    • WinNT. WinNT is faster than LDAP but does not support group nesting. Used only for backward compatibility.
    • LDAP. LDAP supports group nesting but is slow. Used only for backward compatibility.
    • Secure Identifier. This is the preferred and fastest method. It supports group nesting and renaming.
  5. Click Tasks > Add and specify a user or a group in the Select Users dialog. Click OK to a user/group to the list on the Filtering tab page.

To convert users or groups specified using WinNT or LDAP, select the entry and then click Tasks > Convert.

Filtering by client

To allow a specific client or a list or clients to access the published resource, follow these steps:

  1. Select Client in the Search Filtering Type drop-down list.
  2. Select the Allow the following Clients option.
  3. Click Tasks > Add and select the client(s) in the Select Client dialog.
  4. Click OK to add the clients to the list.

Filtering by IP address

To allow a specific IP address (or multiple addresses) or a range of IP addresses to access the published resource, follow these steps:

  1. In the Search Filtering Type drop-down list, select IP Address.
  2. Select the Allow the following IPs option.
  3. Click Tasks > Add in the IPv4 and/or IPv6 sections to specify the IP address or a range of IP addresses and click OK.

Filtering by MAC address

To allow a MAC address or a specific list of MAC addresses to access the published resource, follow these steps:

  1. In the Select Filtering Type drop-down list, select MAC.
  2. Select the Allow the following  MACs option.
  3. Click Tasks > Add to select the MAC address(es) and click OK.

Filtering by gateway

To allow users to connect to a published resource through a specific gateway, follow these steps:

  1. Select the Gateway filtering type.
  2. Select the Allow connections from the following gateway option.
  3. Click Tasks > Add to specify the gateway and its IP address (if it has multiple IP addresses).

Configuring multiple filtering rules

If multiple filtering rules are configured for a specific published resource, the connecting user has to match ALL of them to be allowed access to the published resource.
Top of page Feedback