Controlling Web Users By Source Ip Addresses - 3Com 4510G Configuration Manual

Controlling Web Users by Source IP Addresses

The switch 4510G support Web-based remote management, which allows Web users to access the
switches using the HTTP protocol. By referencing access control lists (ACLs), you can control the
access of Web users to the switches.
Prerequisites
The control policies to be implemented on Web users are decided, including the source IP addresses
to be controlled and the control action, that is, whether to allow or deny the access.
Controlling Web Users by Source IP Addresses
This feature is achieved through the configuration of basic ACLs, the numbers of which are in the
range 2000 to 2999. For the definition of ACLs, see ACL Configuration in the Security Volume.
Follow these steps to configure controlling Web users by source IP addresses:
To do...
Enter system view
Create a basic ACL or enter
basic ACL view
Define rules for the ACL
Quit to system view
Reference the ACL to control
Web users
Forcing Online Web Users Offline
The network administrators can run a command to force online Web users offline.
Perform the following operation to force online Web users offline:
To do...
Force online Web users offline
Configuration Example
Network requirements
Configure a basic ACL to allow only Web users using IP address 10.110.100.52 to access the switch.
Use the command...
system-view
acl [ ipv6 ] number acl-number
[ match-order { config | auto } ]
rule [ rule-id ] { permit | deny } [ source
{ sour-addr sour-wildcard | any } |
time-range time-name | fragment |
logging ]*
quit
ip http acl acl-number
Use the command...
free web-users { all | user-id user-id |
user-name user-name }
8-6
Remarks
—
Required
The config keyword is
specified by default.
Required
—
Required
Remarks
Required
Use this command in
user view