Solved: SG250 webui acceslist

plavielle · ‎02-26-2024

Hi community.

Someone can explain me how i can create an accesslist with webui to :

deny network 10.64.128.0 to access network 10.64.66.0 and 10.19.2.0

allow network 10.64.128.0 to access host 10.19.2.224 on port 4085 and 5093

I have created an ACL "test" and 2 ACE (deny ones) and i cannot add allow rules (with higher id) "already exist.

Thanksl

plavielle · ‎02-27-2024

Hi. After some "fight" with my switch i have found that de WEBUI is very unstable ( liviu.gheorghe what is your firmware version ???)

Finally i have setup my acces-list and bind-it to vlan1 and all works

But between each rule i add, i have to wait some time (like 60s). If i dont wait i have a red message "rules already exist".

So you have to take your time between each rule you add in your ACE.

Thanks liviu.gheorghe.

View solution in original post

liviu.gheorghe · ‎02-26-2024

Hello @plavielle ,

I think the problem in your case is that you didn't leave some space between priority numbers. It's best practice to number your priority numbers from 10 and increment them by 10. This way if you need to insert another ACE, you will have the space to do that.

Attached is a screenshot of your ACE - I started with 10, 20 and then inserted rules 5 and 6 and after that rule 30.

Hope this helps.

Regards, LG
*** Please Rate All Helpful Responses ***

plavielle · ‎02-27-2024

Hi. After some "fight" with my switch i have found that de WEBUI is very unstable ( liviu.gheorghe what is your firmware version ???)

Finally i have setup my acces-list and bind-it to vlan1 and all works

But between each rule i add, i have to wait some time (like 60s). If i dont wait i have a red message "rules already exist".

So you have to take your time between each rule you add in your ACE.

Thanks liviu.gheorghe.