# Access Control

The **Settings > Access Control** menu section is dedicated to the meticulous management of your application’s access permissions. 

<figure><img src="/files/xrUaogrwsif9lFTwzfuP" alt=""><figcaption></figcaption></figure>

Through this configuration module, you have the capability to intricately define access rules, whether for specific users or entire subnets (up to /22), based on IP addresses. This approach ensures a highly controlled and secure environment for your service, bolstering your data protection efforts.

So, let’s see in more detail how to manage the [White List](#h.vp01ity4qc8y) and [Black List](#h.138y676bhghi) of IP addresses.

### The White List <a href="#h.vp01ity4qc8y" id="h.vp01ity4qc8y"></a>

The white IPs list is required to tell the system to allow user(s) with particular addresses to access the service bypassing all the security checks and restrictions, ensuring a smooth and uninterrupted experience for trusted parties.

To add an IP to the white list, click the **Add New IP** button in the right part above the appropriate ***IP White List*** frame:

<figure><img src="/files/Th8B5hHL23TvJgor8zvC" alt=""><figcaption></figcaption></figure>

In the displayed pop-up window, enter the required IP address (or a subnet mask, up to /22 bit-length) and submit it by selecting **Add**:

<figure><img src="/files/XBquTgFiTUmpB43KkLfn" alt="" width="402"><figcaption></figcaption></figure>

To remove the previously added IP address at any time, click the bin icon next to the appropriate line and confirm this action:

<figure><img src="/files/Y9ehTGY9ZRQ65AwlsI9D" alt=""><figcaption></figcaption></figure>

The changes for both adding and removing IPs from the list take effect immediately.

### The Black List <a href="#h.138y676bhghi" id="h.138y676bhghi"></a>

The black IPs list comes in handy in case you need to restrict access to your application for a certain IP address due to security reasons, such as preventing unauthorized access or blocking potentially malicious traffic.

The flow is completely similar to the one described above - select the **Add New IP** button above the corresponding ***IP Black List*** section:

![](/files/7WlQ1vt5P7uOENJ6om5u)

In the popped-up window, paste the required IP address and click **Add**:

<figure><img src="/files/SUZFf75pdkWeQ5oA63Bf" alt="" width="404"><figcaption></figcaption></figure>

The specified address will instantly appear on the list, and access to the service for it will be denied.

{% hint style="info" %}
**Note** that for the Black IPs list, you can only add specific individual addresses and not subnets.
{% endhint %}

The address removal can also be performed in no seconds - just click the bin icon within the appropriate line and confirm the initiated action:

<figure><img src="/files/4vIT2orgQ8GycJrIgAod" alt=""><figcaption></figcaption></figure>

Any modifications, whether adding or removing IPs from the list, take effect immediately.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.edgeport.com/product-docs/service-menu/settings/access-control.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.