Restrict web access to XOS swtich

  • 0
  • 1
  • Question
  • Updated 4 years ago
  • Answered


how is it possible to restrict web access to XOS swtich?

I have make .pol files for snmp Telnet/ssh and web access.

The snmp and Telnet/ssh file is working fine, but I can not do that for web Access.

By the snmp for example I can do config snmp access-prof  <policyfile>

What can I do by the web Access?

Thanks for help

Best Regards


Photo of Christian Neuhaus

Christian Neuhaus

  • 90 Points 75 badge 2x thumb

Posted 4 years ago

  • 0
  • 1
Photo of Sumit Tokle

Sumit Tokle, Alum

  • 5,738 Points 5k badge 2x thumb
Official Response
Suppose we have 4 IP’s for which we want to allow http Access to the Switch.IP’s  like:

Then we have to create 5 rules like

 > create access-list IP-ONE " source-address; " "permit"
 > create access-list IP-TWO " source-address; " "permit"
 > create access-list IP-THREE " source-address; " "permit"
 > create access-list IP-FOUR " source-address; " "permit"
 > create access-list IP-OTHER " source-address; " "deny"


Now we need to apply these rules to the Web Http 
> ========================================
> Configure web http access-profile add IP-ONE first Configure web http 
> access-profile add IP-TWO after IP-ONE Configure web http 
> access-profile add IP-THREE after IP-TWO Configure web http 
> access-profile add IP- FOUR after IP-THREE Configure web http 
> access-profile add IP-OTHER after IP-FOUR 
> =================================================

Let us know if you have any issue after doing this.