Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1589
Views
0
Helpful
1
Replies

Trustsec SGACL

Go to solution
Vadim Starovoytov
Level 1
Level 1

‎12-09-2020 07:18 AM

I am creating rules (SGACL) for a trustsec matrix.

I found a variation on how to permit and deny service ports.

Please tell me if there is a way to deny and permit ip addresses of hosts?

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Damien Miller
VIP Alumni
VIP Alumni

‎12-09-2020 08:57 AM

SGACLs are IP agnostic other than the extent where they can apply to all, or selectively to ipv4/ipv6 traffic. You cannot directly place an IP address within an SGACL, it is strictly SGT to SGT enforcement. 

 

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Damien Miller
VIP Alumni
VIP Alumni

‎12-09-2020 08:57 AM

SGACLs are IP agnostic other than the extent where they can apply to all, or selectively to ipv4/ipv6 traffic. You cannot directly place an IP address within an SGACL, it is strictly SGT to SGT enforcement. 

 

0 Helpful
Customers Also Viewed These Support Documents