Creating an ace – Allied Telesis AT-S63 User Manual

Page 856

background image

Chapter 37: Management Access Control List

856

Section IX: Management Security

Creating an ACE

To create a new ACE in the management ACL, perform the following
procedure:

1. From the Main Menu, type 5 to select System Administration.

The System Administration menu is shown in Figure 4 on page 60.

2. From the System Administration menu, type 7 to select Management

ACL.

The Management ACL Configuration menu is shown in Figure 284 on
page 854.

3. From the Management ACL Configuration menu, type 2 to select

Create Management ACL Entry.

The following prompt is displayed:

Enter the entry ID : [1 to 256] -> 1

4. Enter an identification number for the access control entry. Every ACE

must have a unique number. The range is 1 to 256.

The following prompt is displayed:

Enter the IP address:

5. Enter the IP address of a specific management station (for example,

149.11.11.11) or a subnet (for example, 149.11.11.0).

The following prompt is displayed:

Enter the Mask:

6. Enter a mask that indicates the parts of the IP address the switch

should filter on. A binary “1” indicates the switch should filter on the
corresponding bit of the address, while a “0” indicates that it should
not. If you are filtering on a specific IP address, enter the mask
255.255.255.255. If you are filtering on a subnet, the mask will depend
on the subnet. For example, to allow all management stations in the
subnet 149.11.11.0 to manage the switch, you would enter the mask
255.255.255.0.

The following prompt is displayed:

Enter the Application Type [TELNET, WEB, PING, ALL]:

7. Specify which application you want the management station to be able

to use when managing the switch. The options are: