You can add to specify how you want the OECB to enforce realm access by configuring access control entries.

1. Access the Access Control configuration object
   Click Configuration, System Administration, DoS
2. On the Access Control page, do the following:

   Realm ID	Enter the Name of the ingress realm to which this ACL applies.
   Description	Enter a text description of the ACL for identification purposes.
   Source Address	Enter the source IPv4 address and port number for the host in the following format: <IP address>[/number of address bits>][:<port>][/<port bits>] For example: 10.0.0.1/24:5000/14 10.0.0.1/16 10.0.0.1/24:5000 10.0.0.1:5000
   Destination Address	(This is ignored if you configure an application protocol.) Enter the destination IPv4 address and port for the destination in the following format: <IP address>[/number of address bits>][:<port>[/<port bits>]] You do not need to specify the number of address bits if you want all 32 bits of the address to be matched. You also do not need to specify the port bits if you want the exact port number matched. If you do not set the port mask value or if you set it to 0, the exact port number will be used for matching. The default value is 0.0.0.0.
   Application Protocol	Enter the application protocol type for this ACL entry. The valid values are: SIP None Note: If application-protocol is set to none, the destination-address and port will be used. Ensure that your destination-address is set to a non-default value (0.0.0.0.)
   Transport Protocol	Select the transport-layer protocol configured for this ACL entry. The default value is ALL. The only valid value is: ALL
   Access	Enter the access control type or trusted list based on the trust-level parameter configuration for this host. The default value is permit. The valid values are: permit—Puts the entry into the untrusted list. deny—Puts the entry in the deny list.

3. Click OK.
4. (Optional) Add another Access Control list.
5. Save the configuration.