MES3000 Ethernet switch series 151
management access-class
{console-only | name}
Restrict device management by the specific access list. Activate
the specific access list.
- console-only—device management is available via the console
only.
no management access-class
Remove the device management restriction by the specific access
list.
Access control list configuration mode commands
Command line request in access control list configuration mode appears as follows:
console(config)# management access-list eltex_manag
console (config-macl)#
Table 5.167 —Access control list configuration mode commands
permit [gigabitethernet
gi_port | tengigabitethernet
te_port | port-channel group |
vlan vlan_id] [service service]
gi_port: (1..8/0/1..24);
te_port: (1..8/0/1..4);
group: (1..24);
vlan_id(1..4094)
Define the allowing criteria for the access control list.
- service—access type—Telnet, SSH, SNMP, HTTP, HTTPS
permit ip-source
{ipv4_address |
ipv6_address/prefix_length}
[mask {mask | prefix_length}]
[gigabitethernet gi_port |
tengigabitethernet te_port |
port-channel group | vlan
vlan_id] [service service]
deny [gigabitethernet gi_port |
tengigabitethernet te_port |
port-channel group | vlan
vlan_id] [service service]
gi_port: (1..8/0/1..24};
te_port: (1..8/0/1..4};
group: (1..24);
vlan_id: (1..4094)
Define the restriction criteria for the access control list.
- service—access type—Telnet, SSH, SNMP, HTTP, HTTPS
deny ip-source {ipv4-address |
ipv6_address/prefix_length}
[mask {mask| prefix_length}]
[gigabitethernet gi_port |
tengigabitethernet te_port |
port-channel group | vlan
vlan_id] [service service]
Privileged EXEC mode commands
Command line request in Privileged EXEC mode appears as follows:
console#
Table 5.168 —Privileged EXEC mode commands
show management access-list
[name]
Show access control lists.
show management
accessclass
Show information on the active access control lists.
To Next Page
Loading...
Need help?
General
