Controlling Web Users By Source Ip Address; Prerequisites - H3C S3610 Series Operation Manual
Hide thumbs
Also See for S3610 Series:
- Operation manual (175 pages) ,
- Quick start manual (84 pages) ,
- Command manual (54 pages)
Table of Contents
Advertisement
Operation Manual – Login
H3C S3610&S5510 Series Ethernet Switches
II. Network diagram
Sw itch
Sw itch
Figure 7-2 Network diagram for controlling SNMP users using ACL
III. Configuration procedure
# Define a basic ACL.
<H3C> system-view
[H3C] acl number 2000 match-order config
[H3C-acl-basic-2000] rule 1 permit source 10.110.100.52 0
[H3C-acl-basic-2000] rule 2 permit source 10.110.100.46 0
[H3C-acl-basic-2000] rule 3 deny source any
[H3C-acl-basic-2000] quit
# Apply the ACL to only permit SNMP users sourced from the IP addresses of
10.110.100.52 and 10.110.100.46 to access the switch.
[H3C] snmp-agent community read h3c acl 2000
[H3C] snmp-agent group v2c h3cgroup acl 2000
[H3C] snmp-agent usm-user v2c h3cuser h3cgroup acl 2000
7.4 Controlling Web Users by Source IP Address
You can manage a S3610&S5510 series Ethernet switch remotely through Web. Web
users can access a switch through HTTP connections.
You need to perform the following two operations to control Web users by source IP
addresses.
Defining an ACL
Applying the ACL to control Web users
7.4.1 Prerequisites
The controlling policy against Web users is determined, including the source IP
addresses to be controlled and the controlling actions (permitting or denying).
Internet
Internet
Chapter 7 Controlling Login Users
7-7
s
Advertisement
Table of Contents
