3Com Switch 4500 26-Port Configuration Manual page 147
Switch 4500 family 26-port, 50-port, pwr 26-port, pwr 50-port
Hide thumbs
Also See for Switch 4500 26-Port:
- Manual (942 pages) ,
- Configuration manual (898 pages) ,
- Getting started manual (128 pages)
Table of Contents
Advertisement
Configuration Tasks
Table 150
lists the commands that you can execute to configure TELNET or SSH
user ACL.
Table 150 Commands for Configuring TELNET/SSH User ACL
To
In This View
Enter system
view
Define ACLs and
enter ACL view
Define rules
Basic ACL view rule [ rule-id ] { permit
Define rules
Advanced ACL
view
Quit ACL view
Enter user
interface view
Use ACLs, and
Basic or
restrict
advanced
incoming/outgoi
ACLs
ng calls for
TELNET or SSH
users
Use L2 ACLs
By default, the incoming/outgoing calls are not restricted on the user interface.
You can only use number-based ACLs for TELNET or SSH user ACL control.
■
When TELNET or SSH users use basic or advanced ACLs, the incoming/outgoing
■
calls are restricted on the basis of the source or destination IP address. As a
result, when you use the rules for basic and advanced ACLs, only the source IP
and the corresponding mask, the destination IP and the corresponding mask,
and the time-range keyword take effect. When TELNET and SSH users use L2
ACL Control Configuration
Type This Command
system-view
acl number acl-number [
match-order { config |
auto } ]
| deny } [ source {
source-addr wildcard |
any } | fragment {source
[source-addr wildcard |
any ]}]
r rule rule-id
{ permit
| deny } protocol
[source { source-addr
wildcard | any } ]
| [destination {
dest-addr wildcard | any
} ] | [ icmp-type type
code ] | [precedence pre-
cedence ] | [tos tos ]
| [dscp dscp ] |
[ fragment ]
quit
user-interface [ type ]
first-number
acl acl-number1 {
inbound | outbound }
acl acl-number2 inbound
145
Description
Required. You can only
define number-based
ACLs here.
When TELNET and SSH
users use basic and
advanced ACLs, only
the source IP and the
corresponding mask,
the destination IP and
the corresponding
mask, and the
time-range keyword in
the rule parameters
take effect.
When TELNET and SSH
users use basic and
advanced ACLs, only
the source IP and the
corresponding mask,
the destination IP and
the corresponding
mask, and the
time-range keyword in
the rule parameters
take effect.
The acl-number1
parameter indicates
basic or advanced ACL
number, in the range
of 2,000 to 3,999.
The acl-number2
parameter indicates
the L2 ACL number, in
the range of 4,000 to
4,999.
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
