Support

Support for business applications

Kaspersky Industrial CyberSecurity for Networks

Administration of Kaspersky Industrial CyberSecurity for Networks

Configuring address spaces

About address space rules

Kaspersky Industrial CyberSecurity for Networks
Нет результатов
Online Help
FAQ Download Forum Contact support Recovery tools Product videos

About address space rules

March 22, 2024

ID 235036

Get as PDF

The rules of address spaces are displayed in the Rules blocks within descriptions of address spaces. Information about rules is displayed in the address space header and in the rules table.

The settings of address space rules are displayed in the following columns of the table:

  • Data source.

    Type of source of incoming address information and list of selected data sources. The following types of data sources are available:

    • Monitoring points – selected for a monitoring point rule.
    • Integration servers – selected for an integration servers rule (the data on address information received from the selected integration servers will satisfy the address space rule).
    • Active polling modules – selected for an active polling modules connectors rule. (the data on address information received from the selected active polling modules will satisfy the address space rule).
  • OSI model layers.

    Selected layers of the Open Systems Interconnection (OSI) model for an address space rule. A rule can be configured for addresses of the following OSI layers:

    • Data Link (L2) – MAC addresses.
    • Network (L3) – IP addresses.
    • Data Link and Network (L2 and L3) – MAC addresses and IP addresses.
  • VLAN ID.

    IDs of virtual local area networks (VLAN) that are applied when using VLAN technology in accordance with the IEEE 802.1q standard. When used for an address space rule, the VLAN ID parameter may take the following values:

    • Any – VLAN technology is used for network interactions between devices, and any VLAN IDs can be used.
    • Unallowed – VLAN technology is not used for network interactions between devices.
    • Any or not used – VLAN technology is either not used for network interactions between devices, or it is used with any VLAN IDs.
    • Fixed values with a list of VLAN IDs – VLAN technology is used for network interactions between devices, and an address space can include only address information that has one of the listed VLAN IDs.
  • IP addresses.

    IP addresses included in the address space. Addresses can be specified individually, as ranges, or in CIDR subnet address format.

When viewing the rules table, you can use the configuration functions (by clicking the Gear icon. icon) and search functions.

Did you find this article helpful?
What can we do better?
Thank you for your feedback! You're helping us improve.
Thank you for your feedback! You're helping us improve.