54
Chapter 4:
SFE2000/SFE2000P Gigabit Ethernet Switch Reference Guide
Chapter
4
– Port — Specifies the port on which the access profile is defined.
– LAG — Specifies the LAG on which the access profile is defined.
– VLAN — Specifies the VLAN on which the access profile is defined.
• Source IP Address — Defines the interface source IP address to which the access profile applies.
The Source IP Address field is valid for a subnetwork.
• Network Mask — Determines what subnet the source IP Address belongs to in the network.
• Prefix Length — Defines the number of bits that comprise the source IP address prefix, or the
network mask of the source IP address.
• Action — Defines the action attached to the rule. The possible field values are:
– Permit — Permits access to the device.
– Deny — Denies access to the device. This is the default.
3. Define the relevant fields.
4. Click Apply. The access profile is added, and the device is updated.
Defining Profile Rules
Access profiles can contain up to 128 rules that determine which users can manage the switch module,
and by which methods. Users can also be blocked from accessing the device. Rules are composed of
filters including:
•Rule Priority
•Interface
• Management Method
• IP Address
•Prefix Length
• Forwarding Action
To define profile rules:
1. Click Security Suite > Access Method > Profile Rules. The Profile Rules Page opens: