The policy I use without issue is similar to:
Switch1.4 # sh policy telnet
Policies at Policy Server:
Policy: telnet
entry telnet {
if match any {
source-address 12.34.56.78/32 ;
source-address 12.34.56.79/32 ;
source-address 12.34.56.80/32 ;
source-address 12.34.56.81/32 ;
source-address 12.34.56.82/32 ;
source-address 12.34.54.0/24 ;
source-address 12.34.55.0/24 ;
}
then {
permit ;
}
}