Controlling Telnet Users By Source And Destination Ip Addresses - H3C S5500-EI series Operation Manual
Hide thumbs
Also See for S5500-EI series:
- Configuration manual (490 pages) ,
- Security configuration manual (448 pages) ,
- Operation manual (216 pages)
Table of Contents
Advertisement
Operation Manual – Login
H3C S5500-EI Series Ethernet Switches
Enter system view
Create a basic ACL or
enter basic ACL view
Define rules for the ACL
Quit to system view
Enter user interface view
Apply the ACL to control
Telnet users by source IP
addresses
8.2.3 Controlling Telnet Users by Source and Destination IP Addresses
Controlling Telnet users by source and destination IP addresses is achieved by
applying advanced ACLs, which are numbered from 3000 to 3999. Refer to the ACL
module for information about defining an ACL.
Enter system view
Create an advanced ACL
or enter advanced ACL
view
Define rules for the ACL
To do...
system-view
acl [ ipv6 ] number
acl-number
[ match-order { config |
auto } ]
rule [ rule-id ] { permit |
deny } [ source
{ sour-addr sour-wildcard |
any } | time-range
time-name | fragment |
logging ]*
quit
user-interface [ type ]
first-number
[ last-number ]
acl [ ipv6 ] acl-number
{ inbound | outbound }
To do...
system-view
acl [ ipv6 ] number
acl-number
[ match-order { config |
auto } ]
rule [ rule-id ] { permit |
deny } rule-string
Use the command...
Use the command...
8-2
Chapter 8 Controlling Login Users
Remarks
—
As for the acl number
command, the config
keyword is specified by
default.
Required
—
—
Required
The inbound keyword
specifies to filter the users
trying to Telnet to the
current switch.
The outbound keyword
specifies to filter users
trying to Telnet to other
switches from the current
switch.
Remarks
—
As for the acl number
command, the config
keyword is specified by
default.
Required
You can define rules as
needed to filter by specific
source and destination IP
addresses.
Advertisement
Chapters
Table of Contents
Troubleshooting
