Import or Export Socket Filter Lists

Use the following procedure to create and manage socket filter lists using a CSV file.
capam32
HID_ImportExportSocketFilters
Use the following procedure to create and manage socket filter lists using a CSV file.
If your CSV file contains duplicate records, only one of the duplicate rows is imported; any others are ignored. For example, if a CSV file contains the following rows, one row is imported and the other row is ignored:
Type List Name List Type IP Address Port
Socket Filter List whiteList white 1.2.3.4 80
Socket Filter List whiteList white 1.2.3.4 80
Follow these steps:
 
  1. Go to 
    Policies, Manage Policy Filters
    .
    The 
    Socket Filters 
    List page appears.
  2. On the 
    Socket Filters 
    tab, select the 
    Import/Export
     button.
    The Import/Export socket filters window appears.
  3. A sample file is available by selecting the 
    Download Sample File
     button.
  4. All columns are required fields.
    1. Type: 
      Socket Filter List
    2. List Name: 
      This text populates the
       Name 
      field on the Socket Filter List page.
    3. List Type: 
      white or black
      Use "white: for a Whitelist, which is a list of sockets (IP address and port combinations) that a user may use. All other sockets are prohibited.
      Use "black" for a Blacklist, which is a list of sockets that a user may not use. All other sockets are permitted.
    4.  
      IP Address
      The IP address can be a single address or a mask. Both of these addresses are valid:
      192.168.1.14, 192.168.1.14/24
    5.  
      Port
      You can include one or more port numbers, comma or space separated, or one port range. All these ports are valid (semicolons not included):
      5555; 0-65535; 5555 7777; *; 21,22,23
  5. Use the 
    Choose File
     button to select the completed CSV file for import and select 
    Import Socket Filters
     to upload.
    The list is now effective, and available for inspection or editing on the 
    Socket Filters
     list page.
To add new socket filters to your existing socket filter list, create and import a 
fresh 
CSV file that contains only the new entries. The new socket filters are added to the existing list in 
PAM
. Do 
not
 add the new entries to an existing socket filter CSV and reimport that file. To maintain an up-to-date socket filter list for your records, export the complete list to CSV after importing the new entries.
Export Socket Filters
Use the 
Export Socket Filters
 button to export existing SFLs to a CSV file.