How to Configure IP Security Profile?

IP Security Profiles allow users to control and limit IP traffic access to their account by specifying which IP addresses or ranges are permitted or denied. This feature is crucial for ensuring that only authorized devices and users can utilize the SIM cards, effectively preventing unauthorized access and data breaches. By configuring these profiles, customers gain granular control over their network traffic, reinforcing security measures and safeguarding sensitive information.

1. Access your account by logging in to the Monogoto hub.

2. From the top bar, click on "Advanced Console" button.

3. Click on the "Security" section from the sidebar.

4. Select the "IP Security Profile" tab.

3. Press on button "Add New Profile".

4. Enter required information and select a Type.

• Enter a Name for the Security Profile

• Enter a Description for the Security Profile

• Choose Security Profile Type "IP Security Profile"

5. Press on the "Create" button.

6. In order to manage/create inbound data connection rules, select the "Inbound Rules" tab.

7. To add a new rule for inbound data, please press on the "Add New" button.

8. First, let's configure a rule that will block all inbound data connections.

• Name = name of this data rule

• Description = description of this data rule

• Actions = what action this rule should have. In order to block inbound data connection, please select Block

• Protocol = select to what protocol this rule will apply. In order for this rule to be applied to all protocols, please select All

• Source Address = select if all or only a specific IP address should be affected by this rule. In order for this rule to be applied to all IP addresses, please select all IPs

9. Press on the "Save & Close" button.

10. Now we can add an exception to our inbound data block rule, in order to allow inbound data connection with our IP address via our selected ports. To add another new rule for inbound data, please press on the "Add New" button.

11. The rule we will configure now will allow inbound data communication with our entered IP address and selected ports.

• Name = name of this data rule

• Description = description of this data rule

• Actions = what action this rule should have. In order to allow inbound data connection, please select Allow

• Protocol = select to what protocol this rule will apply

• From Port = enter a first port of the range that will be affected by this rule

• To Port = enter a last port of the range that will be affected by this rule

• Source Address = select if all or only a specific IP address should be affected by this rule. In order for this rule to be applied to a specific IP address, please select Limited

• IP Type = please select IPv4

• IP Address = enter an IP address that will be affected by this rule

12. Press on the "Save & Close" button.

13. Now that we have created inbound data connection rules, let change the order of the rules. Since checking of the rules by the system goes from top to bottom, therefore please make sure to leave block rule as the last rule.

14. Once we have fully configured the inbound data connection rules, let's create outbound data connection rules. Please press on the "Outbound Rules" tab.

15. Now please press on the "Add New" button.

16. Just like with inbound data connection rule, first, we want to configure a rule that will block all outbound data connections.

• Name = name of this data rule

• Description = description of this data rule

• Actions = what action this rule should have. In order to block outbound data connection, please select "Block"

• Protocol = select to what protocol this rule will apply. In order for this rule to be applied to all protocols, please select All

• Destination Address = select if all or only a specific IP address should be affected by this rule. In order for this rule to be applied to all IP addresses, select "All IPs".

17. Press on the "Save & Close" button.

18. Now we can add an exception to our outbound data block rule, in order to allow outbound data connection with our IP address via our selected ports. To add another new rule for outbound data, please press on the "Add New" button.

19. The rule we will configure now will allow outbound data communication with our entered IP address and selected ports.

• Name = name of this data rule

• Description = description of this data rule

• Actions = what action this rule should have. In order to allow outbound data connection, please select Allow

• Protocol = select to what protocol this rule will apply

• From Port = enter a first port of the range that will be affected by this rule

• To Port = enter a last port of the range that will be affected by this rule

• Destination Address = select if all or only a specific IP address should be affected by this rule. In order for this rule to be applied to a specific IP address, please select Limited

• IP Type = please select IPv4

• IP Address = enter an IP address that will be affected by this rule

20. Press on the "Save & Close" button.

21. Now that we have created outbound data connection rules, let change the order of the rules. Since checking of the rules by the system goes from top to bottom, therefore please make sure to leave block rule as the last rule.

22. To save our created IP Security Profile rules, please press on button SAVE & CLOSE.

23. In the window that opens, please press on the "Apply Setting" button.

1. Now we want to select to what Network our created IP Security Profile will be assigned. To do that, let's go to the "Network" section.

25. Find a Network that we wish to have our created IP Security Profile and press on "Settings" and select "Edit".

26. In Network settings, please select our created IP Security Profile.

27. Press on the "Save & Close" button.

28. In the window that opens, please press on the "Apply Settings" button.

29. Done. We have successfully created and applied an IP Security Profile to our selected network.