Controlling Telnet Users By Source Mac Addresses; Configuration Example - 3Com WX3000 Series Operation Manual

Controlling Telnet Users by Source MAC Addresses

Controlling Telnet users by source MAC addresses is achieved by applying Layer 2 ACLs, which are
numbered from 4000 to 4999.
Follow these steps to control Telnet users by source MAC addresses:
To do...
Enter system view
Create or enter Layer 2 ACL
view
Define rules for the ACL
Quit to system view
Enter user interface view
Apply the ACL to control
Telnet users by specified
source MAC addresses

Configuration Example

Network requirements
As shown in Figure
permitted to access the switching engine.
Figure 7-1 Network diagram for controlling Telnet users using ACLs
Configuration procedure
# Define a basic ACL.
<device> system-view
[device] acl number 2000
[device-acl-basic-2000] rule 1 permit source 10.110.100.52 0
[device-acl-basic-2000] quit
# Apply the ACL.
[device] user-interface vty 0 4
[device-ui-vty0-4] acl 2000 inbound
Use the command...
system-view
acl number acl-number
rule [ rule-id ] { deny |
permit } [ rule-string ]
quit
user-interface [ type ]
first-number [ last-number ]
acl acl-number inbound
7-1, only the Telnet users sourced from the IP address of 10.110.100.52 are
—
—
Required
You can define rules as needed to
filter by specific source MAC
addresses.
—
—
Required
By default, no ACL is applied for
Telnet users.
7-3
Remarks