https://live.paloaltonetworks.com/t5/expedition-discussions/limiting-access-to-the-expedition-server-from-specific-permitted/m-p/1204793#M5236 <P>Hi&nbsp;<a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/292567">@aboustani</a>&nbsp; No, Expedition does not have this feature.&nbsp;</P> Wed, 22 Jan 2025 01:10:15 GMT lychiang 2025-01-22T01:10:15Z https://live.paloaltonetworks.com/t5/expedition-discussions/limiting-access-to-the-expedition-server-from-specific-permitted/m-p/1204746#M5235 <P>Hi all,</P> <P>I was wondering if Expedition has a way (like permitted-IPs in the fw mgmt interface) to limit the GUI/CLI access from specific IPs instead of being open to all!</P> Tue, 21 Jan 2025 18:04:30 GMT https://live.paloaltonetworks.com/t5/expedition-discussions/limiting-access-to-the-expedition-server-from-specific-permitted/m-p/1204746#M5235 aboustani 2025-01-21T18:04:30Z https://live.paloaltonetworks.com/t5/expedition-discussions/limiting-access-to-the-expedition-server-from-specific-permitted/m-p/1204793#M5236 <P>Hi&nbsp;<a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/292567">@aboustani</a>&nbsp; No, Expedition does not have this feature.&nbsp;</P> Wed, 22 Jan 2025 01:10:15 GMT https://live.paloaltonetworks.com/t5/expedition-discussions/limiting-access-to-the-expedition-server-from-specific-permitted/m-p/1204793#M5236 lychiang 2025-01-22T01:10:15Z https://live.paloaltonetworks.com/t5/expedition-discussions/limiting-access-to-the-expedition-server-from-specific-permitted/m-p/1205024#M5239 <P>Hi&nbsp;<a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/292567">@aboustani</a>&nbsp;</P> <P>&nbsp;</P> <DIV>Ubuntu has an internal firewall that can allow you to restrict the access to the offered services.&nbsp;</DIV> <DIV>&nbsp;</DIV> <DIV>Please have a look at the official Ubuntu documentation here:&nbsp;<A href="https://ubuntu.com/server/docs/firewalls#allow-access-from-specific-hosts" target="_blank" rel="noopener" data-saferedirecturl="https://www.google.com/url?q=https://ubuntu.com/server/docs/firewalls%23allow-access-from-specific-hosts&amp;source=gmail&amp;ust=1737628243819000&amp;usg=AOvVaw3SznYjlvEjCXeoc2GK8C3p">https://ubuntu.com/<WBR />server/docs/firewalls#allow-<WBR />access-from-specific-hosts</A></DIV> <DIV>&nbsp;</DIV> <DIV>Note: It is recommended to create a snapshot (backup) of the VM prior to executing the setup and also using the --dry-run before applying the policy will help you list the policies to be applied before doing it.</DIV> <DIV>&nbsp;</DIV> <DIV>Hope this helps,</DIV> <DIV>&nbsp;</DIV> <DIV>David</DIV> <DIV>&nbsp;</DIV> Wed, 22 Jan 2025 10:32:00 GMT https://live.paloaltonetworks.com/t5/expedition-discussions/limiting-access-to-the-expedition-server-from-specific-permitted/m-p/1205024#M5239 dpuigdomenec 2025-01-22T10:32:00Z https://live.paloaltonetworks.com/t5/expedition-discussions/limiting-access-to-the-expedition-server-from-specific-permitted/m-p/1205200#M5240 <P>Is this in AWS or on-prem? If so , you could edit the SG's or NSG's to only allow your IP's.</P> Thu, 23 Jan 2025 16:21:00 GMT https://live.paloaltonetworks.com/t5/expedition-discussions/limiting-access-to-the-expedition-server-from-specific-permitted/m-p/1205200#M5240 WPhinney 2025-01-23T16:21:00Z