Operation Manual – Access Management
H3C S3600 Series Ethernet Switches-Release 1510
Chapter 1
Access Management
Configuration
1-5
1.4 Access Management Configuration Example
I. Networking requirements
Organization 1 is connected to the port 1 of the switch, and organization 2 to the port 2.
The ports 1 and 2 belong to the same VLAN. The IP addresses ranging
202.10.20.1~202.10.20.20 can be accessed from the port 1 and those ranging
202.10.20.21~202.10.20.50 from the port 2. Organization 1 and organization 2 cannot
communicate with each other.
II. Networking diagram
See Figure 1-1.
III. Configuration procedure
# Enable access management.
<H3C> system-view
System View: return to User View with Ctrl+Z.
[H3C] am enable
# Configures the IP address pool for access management on port 1.
[H3C] interface ethernet1/0/1
[H3C-Ethernet1/0/1] am ip-pool 202.10.20.1 20
# Add Ethernet1/0/1 to the isolation group.
[H3C-Ethernet1/0/1] port isolate
# Configures the IP address pool for access management on port 2.
[H3C-Ethernet1/0/1] quit
[H3C] interface ethernet1/0/2
[H3C-Ethernet1/0/2] am ip-pool 202.10.20.21 30
# Add Ethernet1/0/2 to the isolation group.
[H3C-Ethernet1/0/2] port isolate
To Next Page
Loading...
Need help?
General