Allied Telesis AT-S63 User Manual

AT-S63 Management Software Menus Interface User’s Guide

Section VII: Management Security

781

5. Enter a mask that indicates the parts of the IP address the switch

should filter on. A binary “1” indicates the switch should filter on the
corresponding bit of the address, while a “0” indicates that it should
not. If you are filtering on a specific IP address, use the mask
255.255.255.255. If you are filtering on a subnet, enter the appropriate
mask. For example, to allow all management stations in the subnet
149.11.11.0 to manage the switch, you would enter the mask
255.255.255.0.

The following prompt is displayed:

Enter the Protocol [TCP/UDP/ALL]:

6. Enter either TCP or ALL.

The AT-S63 management software allows you to select UDP, but
because management packets from Telnet and web browser
management sessions are TCP, you should specify TCP or ALL.

The following prompt is displayed:

Enter the Interface [TELNET/WEB/ALL]:

7. Specify which interface you want the management station to be able to

use when managing the switch. The options are:

Telnet - Allows Telnet management packets.

Web - Allows web browser management packets.

All - Allows both Telnet and web browser management packets.

8. If needed, repeat this procedure starting with Step 3 to add more ACEs

to the management ACL.

9. After you have added all of the ACEs, type 1 to select Management

ACL Status.

The following message is displayed:

You are enabling MGMT ACL. All existing Web and Telnet
would be blocked. Do you wish to continue? [Yes/No]

10. Type Y for Yes or N for No to cancel the process.

Note

If you activate this feature without specifying any ACEs, all Telnet
and web browser management packets are discarded by the switch
and you cannot manage the device remotely.

The management ACL is now active on the switch.