VLAN policy rules

To configure a VLAN policy rule, set the policy parameter to vlan. Only one VLAN policy rule is allowed per role. The opposite VLAN rule is applied to the rest of the VLAN IDs. For example, a policy rule “policy:vlan:2-4” permit gives access permission to user for VLANs 2 to 4 only and denies access to rest of the VLANs available in the system.

If you configure multiple VLAN policy rules, only the last entry is taken into effect. All other VLAN policy rules are ignored.

NOTE:

By default, VLAN policy rules allow all commands.