74
When you create rules in the IP Filter List, the prior rules maintain higher priority. To allow
limited access from a subnet to a destination network manager needs to create allow rules first
and followed by deny rules. So, if you just want one IP address to access the system via telnet
from your subnet, not others, the Example 1 demonstrates it, not rules in the Example 2.
Example 1 :
Create a higher priority rule to allow IP address 192.168.2.2 Telnet access from LAN port first,
and deny Telnet access from remaining IP addresses in the same subnet.
Rule
Source
Destination
In/Out Protocol Listen Action Side
IP/Mask
Port IP/Mask
Port
1
192.168.2.2/
32
192.168.2.254/
32
22
In
TCP
n
Pass
LAN
2
192.168.2.0/
24
192.168.2.254/
32
22
In
TCP
n
Deny LAN
Example 2 :
All Telnet access to the system from the IP addresses of subnet 192.168.2.x works with the rule
1 of Example 2. The rule 2 won’t make any difference.
Rule
Source
Destination
In/Out Protocol Listen Action Side
IP/Mask
Port IP/Mask
Port
1
192.168.2.0/
24
192.168.2.254/
32
22
In
TCP
n
Pass
LAN
2
192.168.2.2/
32
192.168.2.254/
32
22
In
TCP
n
Deny LAN
8.3 MAC Filter (This function must be used WISP mode)
Allows to create MAC filter rules to allow or deny unicast or multicast packets from limited
number of MAC addresses. Important and must note. That MAC filter rules have precedence
over IP Filter rules.
Please click on
Advance -> MAC Filter Setup
and follow the below setting.