ACL Control Configuration 145
Configuration Tasks
Tabl e 150 lists the commands that you can execute to configure TELNET or SSH
user ACL.
By default, the incoming/outgoing calls are not restricted on the user interface.
â– You can only use number-based ACLs for TELNET or SSH user ACL control.
â– When TELNET or SSH users use basic or advanced ACLs, the incoming/outgoing
calls are restricted on the basis of the source or destination IP address. As a
result, when you use the rules for basic and advanced ACLs, only the source IP
and the corresponding mask, the destination IP and the corresponding mask,
and the time-range keyword take effect. When TELNET and SSH users use L2
Tab le 150 Commands for Configuring TELNET/SSH User ACL
To In This View Type This Command Description
Enter system
view
system-view
Define ACLs and
enter ACL view
acl number acl-number [
match-order { config |
auto } ]
Required. You can only
define number-based
ACLs here.
Define rules Basic ACL view rule [ rule-id ] { permit
| deny } [ source {
source-addr wildcard |
any } | fragment {source
[source-addr wildcard |
any ]}]
When TELNET and SSH
users use basic and
advanced ACLs, only
the source IP and the
corresponding mask,
the destination IP and
the corresponding
mask, and the
time-range keyword in
the rule parameters
take effect.
Define rules Advanced ACL
view
r rule rule-id { permit
| deny } protocol
[source { source-addr
wildcard | any } ]
| [destination {
dest-addr wildcard | any
} ] | [ icmp-type type
code ] | [precedence pre
-
cedence ] | [tos tos ]
| [dscp dscp ] |
[ fragment ]
When TELNET and SSH
users use basic and
advanced ACLs, only
the source IP and the
corresponding mask,
the destination IP and
the corresponding
mask, and the
time-range keyword in
the rule parameters
take effect.
Quit ACL view quit
Enter user
interface view
user-interface [ type ]
first-number
Use ACLs, and
restrict
incoming/outgoi
ng calls for
TELNET or SSH
users
Basic or
advanced
ACLs
acl acl-number1 {
inbound | outbound }
The acl-number1
parameter indicates
basic or advanced ACL
number, in the range
of 2,000 to 3,999.
Use L2 ACLs acl acl-number2 inbound The acl-number2
parameter indicates
the L2 ACL number, in
the range of 4,000 to
4,999.
To Next Page
Loading...
Need help?
General