User login control
User login control overview
The device provides the following login control methods:
Login Through
Telnet
NMS
Web
Configuring login control over Telnet users
Before configuration, determine the permitted or denied source IP addresses, source MAC addresses, and
destination IP addresses.
Configuring source IP-based login control over Telnet users
Basic ACLs match the source IP addresses of packets, so use basic ACLs to implement source IP-based
login control over Telnet users. Basic ACLs are numbered from 2000 to 2999. For more information about
ACL, see ACL and QoS Configuration Guide.
Step...
1.
Enter system view.
2.
Create a basic ACL and enter
its view, or enter the view of
an existing basic ACL.
3.
Configure rules for this ACL.
4.
Exit the basic ACL view.
5.
Enter user interface view.
Login control methods
Configuring source IP-based login control over Telnet
users
Configuring source and destination IP-based login
control over Telnet users
Configuring source MAC-based login control over
Telnet users
Configuring source IP-based login control over NMS
users
Configuring source IP-based login control over web
users
Command...
system-view
acl [ ipv6 ] number acl-number
[ match-order { config | auto } ]
rule [ rule-id ] { permit | deny }
[ source { sour-addr sour-wildcard
| any } | time-range time-name |
fragment | logging ]*
quit
user-interface [ type ] first-number
[ last-number ]
Remarks
—
Required.
By default, no basic ACL exists.
Required.
—
—
63
ACL used
Basic ACL
Advanced ACL
Ethernet frame header ACL
Basic ACL
Basic ACL