How to Assign ACLs to
Device Interfaces and Agent Services

You can assign ACLs to device interfaces and agent services using the ACL Manager's interface assignment and agent assignment views.

Instructions on:

Assigning ACLs to Interfaces

Use the following steps to assign an inbound/outbound ACL to a device interface.

  1. Select the device in the Console left-panel tree. Click on the ACL Manager right-panel tab.
  2. Select the Interface Assignment view using the radio button at the top of the tab.
  3. Select the device interface where you want to assign an ACL.
  4. Scroll right to see the Inbound ACL and Outbound ACL columns.
  5. Click on the Show Table Editor button to display the table editor row.
  6. In the Table Editor row, click on the Inbound ACL or Outbound ACL column to display the ACL Selection window. Expand the folders to select the desired ACL.
  7. Click OK. A green exclamation mark marks the cell that has been changed and the Save to Database button becomes active.
  8. Click on the Save to Database button to save your change to the ACL Manager Database.
  9. Click on the Enforce button to write your changes to the device's active configuration.
  CAUTION: If the ACL that you are assigning could deny contact with the device from the NetSight server, an error will occur when the device is enforced. There is an Enforce option (Allow ACLs to Deny NetSight) that turns off checking for ACLs which deny access to the device from the NetSight server. Use of this option could result in lost contact with the device. You should not apply an ACL that denies access to the device. If contact is denied by an ACL, you must use the device's command line interface (CLI) to remove the ACL and restore contact.

Assigning ACLs to Agent Services

Use the following steps to assign an ACL to an agent service supported on a device.

  1. Select the device in the Console left-panel tree. Click on the ACL Manager right-panel tab.
  2. Select the Agent Assignment view using the radio button at the top of the tab.
  3. Select the agent service where you want to assign an ACL.
  4. Click on the Show Table Editor button to display the table editor row.
  5. In the Table Editor row, click on the Agent ACL column to display the ACL Selection window. Expand the folders to select the desired ACL.
  6. Click OK. A green exclamation mark marks the cell that has been changed and the Save to Database button becomes active.
  7. Click on the Save to Database button to save your change to the ACL Manager Database.
  8. Click on the Enforce button to write your changes to the device's active configuration.
  CAUTION: If the ACL that you are assigning could deny contact with the device from the NetSight server, an error will occur when the device is enforced. There is an Enforce option (Allow ACLs to Deny NetSight) that turns off checking for ACLs which deny access to the device from the NetSight server. Use of this option could result in lost contact with the device. You should not apply an ACL that denies access to the device. If contact is denied by an ACL, you must use the device's command line interface (CLI) to remove the ACL and restore contact.

Related Information

For information on related windows:

For information on related tasks: