Example for Controlling Web Login Users by Source IP
Network requirements
Apply an ACL to permit Web users with the source IP address of 10.110.100.46 to log in to the switch
through HTTP.
Network diagram
Figure 1-2 Network diagram for controlling Web login users by source IP
Internet
Switch
Configuration procedure
# Define ACL 2001.
<Sysname> system-view
[Sysname] acl number 2001
[Sysname-acl-basic-2001] rule 1 permit source 10.110.100.46 0
[Sysname-acl-basic-2001] quit
# Reference ACL 2001 to control users logging in to the Web server.
[Sysname] ip http acl 2001
Example for Applying ACLs to Hardware
Basic ACL Configuration Example
Network requirements
PC 1 and PC 2 connect to the switch through GigabitEthernet 1/0/1. PC1's IP address is 10.1.1.1. Apply
an ACL on Ethernet 1/0/1 to deny packets with the source IP address of 10.1.1.1 from 8:00 to 18:00
everyday.
Network diagram
Figure 1-3 Network diagram for basic ACL configuration
PC
10.110.100.46
1-13