To do...
Enter user interface view
Apply the ACL to control
Telnet users by specified
source and destination IP
addresses
Controlling Telnet Users by Source MAC Addresses
Controlling Telnet users by source MAC addresses is achieved by applying Layer 2 ACLs, which are
numbered from 4000 to 4999.
Follow these steps to control Telnet users by source MAC addresses:
To do...
Enter system view
Create or enter Layer 2
ACL view
Define rules for the ACL
Quit to system view
Enter user interface view
Apply the ACL to control
Telnet users by specified
source MAC addresses
Configuration Example
Network requirements
Only the Telnet users sourced from the IP address of 10.110.100.52 are permitted to access the switch.
Use the command...
user-interface [ type ]
first-number [ last-number ]
acl acl-number { inbound |
outbound }
Use the command...
system-view
acl number acl-number
rule [ rule-id ] { deny | permit }
[ rule-string ]
quit
user-interface [ type ] first-number
[ last-number ]
acl acl-number inbound
8-3
Remarks
—
Required
The inbound keyword specifies to
filter the users trying to Telnet to
the current switch.
The outbound keyword specifies
to filter users trying to Telnet to
other switches from the current
switch.
Remarks
—
—
Required
You can define rules as
needed to filter by specific
source MAC addresses.
—
—
Required
By default, no ACL is applied
for Telnet users.