• All Files
doc title Help Center
You are here: Home > Managing Switches > Configuring Aruba Switches > Configuring Access Policies on Aruba Switches

Configuring Access Policies on Aruba Switches

 

Aruba Central does not support access policy configuration on Aruba Mobility Access Switches.

To restrict certain types of traffic on physical ports of Aruba switches, you can configure ACLsAccess Control List. ACL is a common way of restricting certain types of traffic on a physical port. from the Aruba Central UI.

To create an access policy, complete the following steps:

1. In the Network Operations app, select one of the following options:

To select a switch group in the filter:

a. Set the filter to a group containing at least one switch.

The dashboard context for the group is displayed.

b. Under Manage, click Devices > Switches.

c. Click the Config icon to view the switch configuration dashboard.

To select a switch in the filter:

a. Set the filter to Global or a group containing at least one switch.

b. Under Manage, click Devices > Switches.

A list of switches is displayed in the List view.

c. Click a switch under Device Name.

The dashboard context for the switch is displayed.

d. Under Manage, click Device.

The tabs to configure the switch is displayed.

2. Click Security > Access Policy. The Access Policy page is displayed.

3. Click + to add a new access policy. The New Access Policy page is displayed.

4. Enter a name for the policy.

5. Click Add.

6. To add a rule to the access policy, click + under Rules for test, and configure the following parameters:

Table 1: Configuring Rules for Access Policies

Name

Description

 Value

Source

Select a source of the traffic for which you want to an access rule.

Any, Network, or Host

For Network, specify IP address and mask

For Host, specify IP address

Destination

Select a destination.

Any, Network, or Host

For Network, specify IP address and mask

For Host, specify IP address

Protocol

Select the type of protocol. Some protocols also require source and destination ports.

Select from drop-down.

Action

The action that the switch must perform on the traffic received at a port.

Permit or Deny

7. Click OK.

8. Click Save Settings.

The access policies must be applied to a switch port and the VLANVirtual Local Area Network. In computer networking, a single Layer 2 network may be partitioned to create multiple distinct broadcast domains, which are mutually isolated so that packets can only pass between them through one or more routers; such a domain is referred to as a Virtual Local Area Network, Virtual LAN, or VLAN. assigned to a port. For more information on access policy assignment to ports and VLANs, see the following topics:

Configuring Switch Ports on Aruba Switches

Configuring VLANs on Aruba Switches

/*]]>*/