VLAN policy rules
To configure a VLAN policy rule, set the policy
parameter
to vlan
. Only one VLAN policy rule is allowed per
role. The opposite VLAN rule is applied to the rest of the VLAN IDs.
For example, a policy rule “policy:vlan:2-4” permit
gives
access permission to user for VLANs 2 to 4 only and denies access
to rest of the VLANs available in the system.
If you configure multiple VLAN policy rules, only the last entry is taken into effect. All other VLAN policy rules are ignored.
NOTE:
By default, VLAN policy rules allow all commands.