EasyManua.ls Logo

H3C WA2200 Series - Prerequisites; Controlling Network Management Users by Source IP Addresses; Configuration Example

H3C WA2200 Series
137 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
5-5
Prerequisites
The controlling policy against network management users is determined, including the source IP
addresses to be controlled and the controlling actions (permitting or denying).
Controlling Network Management Users by Source IP Addresses
This configuration needs to be implemented by basic ACLs; a basic ACL ranges from 2000 to 2999. For
more information about ACLs, see ACL in the ACL and QoS Configuration Guide.
Follow these steps to control network management users by source IP addresses:
To do… Use the command… Remarks
Enter system view
system-view
Create a basic ACL or enter
basic ACL view
acl
[
ipv6
]
number
acl-number [
name
acl-name ] [
match-order
{
auto
|
config
} ]
As for the
acl number
command, the
config
keyword
is specified by default.
Define rules for the ACL
rule
[ rule-id ] {
deny
|
permit
}
[
fragment
|
logging
|
source
{ sour-addr sour-wildcard |
any
} |
time-range
time-range-name ] *
Required
Quit to system view
quit
Apply the ACL while configuring
the SNMP community name
snmp-agent community
{
read
|
write
}
community-name [
acl
acl-number
|
mib-view
view-name ]*
Apply the ACL while configuring
the SNMP group name
snmp-agent group
{
v1
|
v2c
}
group-name [
read-view
read-view ]
[
write-view
write-view ] [
notify-view
notify-view ] [
acl
acl-number ]
snmp-agent group
v3
group-name
[
authentication
|
privacy
] [
read-view
read-view ] [
write-view
write-view ]
[
notify-view
notify-view ] [
acl
acl-number ]
Apply the ACL while configuring
the SNMP user name
snmp-agent usm-user
{
v1
|
v2c
}
user-name group-name [
acl
acl-number ]
snmp-agent usm-user
v3
user-name
group-name [ [
cipher
]
authentication-mode
{
md5
|
sha
}
auth-password [
privacy-mode
{
aes128
|
des56
|
3des
}
priv-password ] ] [
acl
acl-number ]
Required
According to the SNMP version
and configuration customs of
NMS users, you can reference
an ACL when configuring
community name, group name
or username. For the detailed
configuration, see SNMP in the
Network Management and
Monitoring Configuration Guide.
Configuration Example
Network requirements
Only SNMP users sourced from the IP addresses of 10.110.100.52 and 10.110.100.46 are permitted to
access the AP .

Table of Contents

Other manuals for H3C WA2200 Series

Preview: Configuration Guide
Configuration Guide41 pages
Preview: Command Reference
Command Reference131 pages

Related product manuals