How i can enable access list using ip address to ssh login

  • 0
  • 1
  • Problem
  • Updated 1 year ago
  • Not a Problem
i am facing a problem when i am using ACL for SSH using this code it deny all the ip addresses to login using ssh 

other question what is the differnce between source-address and destination-address

because i saw alot of people in the community posting using   source-address and destination-address to login for ssh how come !!!

entry AllowManagementIP {
    if match any {                            



    then {


Photo of Adnan


  • 242 Points 100 badge 2x thumb

Posted 1 year ago

  • 0
  • 1
Photo of Ram

Ram, Employee

  • 1,450 Points 1k badge 2x thumb

Please see the below provided knowledge base articles for your reference:

1. Source-address is where the traffic originating from, like a end user/device (host).
2. Destination-address is where the user traffic destined to communicate (send the data to an end point).

Photo of Sushruth Sathyamurthy

Sushruth Sathyamurthy, Employee

  • 1,008 Points 1k badge 2x thumb
Hi Adnan,

When you configure an ACL for an access profile, in this case - the SSH access profile, there is an implicit deny entry. This means, other than the traffic explicitly allowed (, all other SSH access will be denied.