Private IP ranges are used to isolate suspicious traffic data that Security Intelligence collected within controlled network segments.

Clicking [Security] > [General Settings] takes you to the [General Security Settings] user interface where you can manage the private IP Ranges details using the [Private IP Ranges] tab. These private IP ranges are applicable for use by the Security Intelligence and the NSX Network Detection and Response features when you activate either feature.

If you activate the NSX Network Detection and Response feature, the system uploads the private IP ranges information to the NSX Network Detection and Response feature and some of the intrusion correlation rules use that information.

The Security Intelligence feature categorizes an IP address belonging to one of the CIDR notations listed in the dialog box as a private IP address. If there is no private IP range configured, the entire RFC private IP range is applied. Any IP address that does not belong to any of these CIDR notations is classified as an external address. If the IP address of your VM or physical server does not fall into one of these CIDR notations, consider adding your CIDR notation using this [Private IP Ranges] UI.

手順

  1. Use the following information to set the private IP ranges.
    1. To enter an IPv4 IP range, click inside the [IPv4 IP Range] text box and enter the values. Refer to the IPv4 CIDR notation format shown below the text box. Press Enter for each entry and click [Save] when finished.
    2. To enter an IPv6 IP range, click inside the [IPv6 IP Range] text box and enter the values. Refer to the IPv6 CIDR notation format shown below the text box. Press Enter for each entry and click [Save] when finished.
  2. Click [Save].