Ip Access List Example - D-Link xStack DGS-3610 Series Configuration Manual
Hide thumbs
Also See for xStack DGS-3610 Series:
- Quick installation manual (6 pages) ,
- Hardware installation manual (26 pages)
Table of Contents
Advertisement
Chapter 44 Access Control List Configuration
44.2.4
IP Access List Example
Configuration requirements: There are two devices Switch A and Switch B, as shown in
Figure 45-3:
Figure 44-3 Basic Access List Example
To implement the following security functions by configuring access lists on Switch B:
Hosts in the 192.168.12.0/24 network segment can only access the remote TELNET
services of UNIX hosts in the normal working period and deny the PING service.
On the Switch B console, access to any of the services of hosts in the 192.168.202.0/24
network segment is denied.
Note
Device configuration
Switch B configuration:
DGS-3610(config)# interface GigabitEthernet 0/1
DGS-3610(config-if)# ip address 192.168.12.1 255.255.255.0
DGS-3610(config-if)# exit
DGS-3610(config)# interface GigabitEthernet 0/2
DGS-3610(config-if)# ip address 2.2.2.2 255.255.255.0
DGS-3610(config-if)# ip access-group 101 in
DGS-3610(config-if)# ip access-group 101 out
According to requirements, configure an extended access list numbered 101
44-8
UNIX Host
PC
The above case simplifies the application in the bank system. It only
allows the hosts on the Local Area Network of branches or savings
agencies to access the central host and forbids accessing the central host
on the device.
DGS-3610 Series Configuration Guide
Advertisement
Table of Contents
