Permit Vlan - HP Enterprise FlexFabric 12900E Series Command Reference Manual

Hide thumbs Also See for Enterprise FlexFabric 12900E Series:

Installation manual (152 pages)

Configuration manual (552 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

page of 213

/ 213
Contents
Table of Contents
Bookmarks

Table of Contents

permit vlan

Use

permit vlan

Use

undo permit vlan

Syntax

permit vlan vlan-id-list

undo permit vlan [ vlan-id-list ]

Default

No permitted VLANs are configured in user role VLAN policy view.

Views

User role VLAN policy view

Predefined user roles

network-admin

Parameters

vlan-id-list

specifies a VLAN by VLAN ID or specifies a range of VLANs in the form of

. The value range for the VLAN IDs is 1 to 4094. If you specify a VLAN range, the value

vlan-id2

for the

vlan-id2

Usage guidelines

To permit a user role to access a VLAN after you configure the

must add the VLAN to the permitted VLAN list of the policy. With the user role, you can perform the

following tasks on the VLANs in the permitted VLAN list:

•

Create, remove, or configure the VLANs.

•

Enter the VLAN views.

•

Specify the VLANs in feature commands.

You can repeat the

policy.

The

undo permit vlan

a VLAN.

Any change to a user role VLAN policy takes effect only on users who log in with the user role after

the change.

By default, all access ports belong to VLAN 1. To assign an access port to any other VLAN by using

the

port access vlan

and the new VLAN.

Examples

Configure user role role1:

# Permit user role role1 to execute all commands available in interface view and VLAN view.

<Sysname> system-view

[Sysname] role name role1

[Sysname-role-role1] rule 1 permit command system-view ; interface *

[Sysname-role-role1] rule 2 permit command system-view ; vlan *

# Permit user role role1 to access VLANs 1, 2, 4, and 50 to 100.

[Sysname-role-role1] vlan policy deny

to configure a list of VLANs accessible to a user role.

to remove the permission for a user role to access specific VLANs.

: Specifies a space-separated list of up to 10 VLAN items. Each VLAN item

argument must be greater than the value for the

command to add multiple permitted VLANs to a user role VLAN

permit vlan

command removes the entire list of permitted VLANs if you do not specify

command, make sure you have a user role that can access both VLAN 1

vlan policy deny

vlan-id1 to

argument.

vlan-id1

command, you

Table of Contents

Permit Vlan - HP Enterprise FlexFabric 12900E Series Command Reference Manual

permit vlan

Related Manuals for HP Enterprise FlexFabric 12900E Series

Related Content for HP Enterprise FlexFabric 12900E Series

Table of Contents