System information
Configuring Security
Defining Access Profiles
Cisco Small Business 200 Series Smart Switch Administration Guide 172
16
STEP 3 Click Add to add a rule to it. The Add Profile Rule Page displays.
STEP 4 Enter the parameters.
• Access Profile Name—Select an access profile.
• Rule Priority—Enter the rule priority. When the packet is matched to a rule,
user groups are either granted or denied access to the switch. The rule
priority is essential to matching packets to rules, as packets are matched on
a first-fit basis.
• Management Method—Displays the management method for which the
rule is defined.
• Action—Select Permit to permit the users that attempt to access the switch
by using the configured access method from the interface and IP source
defined in this rule. Or select Deny to deny access.
• Applies to Interface—Select the interface attached to the rule. The options
are:
- All—Applies to all ports, VLANs, and LAGs.
- User Defined—Applies only to the port, VLAN, or LAG selected.
• Applies to Source IP Address—Select the type of source IP address to
which the access profile applies. The Source IP Address field is valid for a
subnetwork. Select one of the following values:
- All—Applies to all types of IP addresses.
- User Defined—Applies to only those types of IP addresses defined in
the fields.
• IP Version—Select the supported IP version of the source address: IPv6 or
IPv4.
• IP Address—Enter the source IP address.
• Mask—Select the format for the subnet mask for the source IP address, and
enter a value in one of the field:
- Network Mask—Select the subnet to which the source IP address
belongs and enter the subnet mask in dotted decimal format.
- Prefix Length—Select the Prefix Length and enter the number of bits that
comprise the source IP address prefix.