I have a volume that was incorrectly configured for iSCSI access, and no deny was in place, so all the machines can see it. I need to restrict it to only 2 ESXi machines. I have those IPs in the Allow and 0.0.0.0/0 in the Deny. The other machines can still see the initiator and mount the volumes. How do I enforce the changes I made to the iSCSI target to remove the access from the non-allowed machines? I have other volumes on this array and don't want to affect the operation of those other volumes/targets.
Can you create a new iSCSI Target and place only those LUNs that you want for the 2 ESXi IPs in the Allow and the 0.0.0.0/0 for the Deny. Should work and the other systems should not be able to connect.