Interface policy rules

To configure an interface policy rule, set the policy parameter to the interface value. Only one interface policy rule is allowed per role. The opposite interface rule is applied to the rest of the interface IDs. For example, a policy rule “policy:interface:A2-A4” deny denies access permission to user for interfaces A2 to A4 only and permits access to rest of the interfaces available in the system.

If you configure multiple interface policy rules, only the last entry is taken into effect. All other interface policy rules are ignored.


By default, interface policy rules allow all commands.