Owner's Manual

ManualsBrandsNetgear ManualsHubsNetgear XCM8806

501

502

503

504

505

506

507

508

509

510

Chapter 17. Security | 509

NETGEAR 8800 User Manual

MyAccessProfile_2.pol

Entry dontAllowTheseSubnets {

if {

source-address 10.203.133.0 /24;

}

then

{

deny;

}

Entry AllowTheRest {

If {

; #none specified

}

then

{

permit;

}

In the following example named MyAccessProfile_2.pol, the switch does not permit

connections from the subnets 10.203.133.0/24 or 10.203.135.0/24 but accepts connections

from all other addresses:

MyAccessProfile_2.pol

Entry dontAllowTheseSubnets {

if match any {

source-address 10.203.133.0 /24;

source-address 10.203.135.0 /24

}

then

{

deny;

}

Entry AllowTheRest {

If {

; #none specified

}

then

{

permit;

}

Configuring SSH2 to Use ACL Policies

This section assumes that you have already loaded the policy on the switch. For more

information about creating and implementing ACLs and policies, see

Chapter 12, Policy

Manager and Chapter 13, ACLs.

To configure SSH2 to use an ACL policy to restrict access, use the following command: