Operation
Create a basic ACL or
enter basic ACL view
Define rules for the ACL
Quit to system view
Apply the ACL to control
Web users
Disconnecting a Web User by Force
The administrator can disconnect a Web user by force using the related commands.
Table 7-6 Disconnect a Web user by force
Operation
Disconnect a Web user by
force
Configuration Example
Network requirements
Only the Web users sourced from the IP address of 10.110.100.52 are permitted to access the switch.
Network diagram
Figure 7-3 Network diagram for controlling Web users using ACLs
10.110.100.46
Host A
Host B
10.110.100.52
Configuration procedure
# Define a basic ACL.
<Sysname> system-view
[Sysname] acl number 2030
[Sysname-acl-basic-2030] rule 1 permit source 10.110.100.52 0
[Sysname-acl-basic-2030] quit
# Apply ACL 2030 to only permit the Web users sourced from the IP address of 10.110.100.52 to access
the switch.
acl number acl-number
[ match-order { config | auto } ]
rule [ rule-id ] { deny | permit }
[ rule-string ]
quit
ip http acl acl-number
free web-users { all | user-id user-id |
user-name user-name }
IP network
Switch
Command
Command
7-6
Description
As for the acl number command, the
config keyword is specified by default.
Required
—
Optional
By default, no ACL is applied for Web
users.
Description
Required
Execute this command in user view.