Purpose: To provide an additional security layer to the existing password protection – especially crucial to production environments.
This solution does not replace the appropriate firewall precautions you should take to deny access to the User Interface from certain IP addresses.
By default, access to the User Interface is password protected. If you want to secure access to the User Interface, you can do so by setting an IP address-based access control list on the Web server running the User Interface.
After following this procedure, users that try to access the User Interface from not-allowed (unauthorized) IP addresses are not able to access the User Interface.
# <install_path>/bin/lighttpd.sh restart
# <install_path>/bin/zendctl.sh restart-lighttpd
To limit IP access:
Refer to the Apache documentation http://httpd.apache.org/docs/2.2/howto/access.html