5-3
Controlling Telnet Users by Source and Destination IP Addresses
This configuration needs to be implemented by advanced ACL; an advanced ACL ranges from 3000 to
3999. For more information about ACLs, see ACL in the ACL and QoS Configuration Guide.
Follow these steps to control Telnet users by source and destination IP addresses:
To do… Use the command… Remarks
Enter system view
system-view
—
Create an advanced ACL or enter
advanced ACL view
acl
[
ipv6
]
number
acl-number
[
name
acl-name ] [
match-order
{
auto
|
config
} ]
As for the
acl number
command,
the
config
keyword is specified by
default.
Define rules for the ACL
rule
[ rule-id ] {
permit
|
deny
}
rule-string
Required
You can define rules as needed to
filter by specific source and
destination IP addresses.
Quit to system view
quit
—
Enter user interface view
user-interface
{ first-num1
[ last-num1 ] | {
console
|
vty
}
first-num2 [ last-num2 ] }
—
Apply the ACL to control Telnet
users by specified source and
destination IP addresses
acl
[
ipv6
] acl-number {
inbound
|
outbound
}
Required
The
inbound
keyword specifies to
filter the users trying to Telnet to
the current access point.
The
outbound
keyword specifies
to filter users trying to Telnet to
other switches from the current
access point.
Controlling Telnet Users by Source MAC Addresses
This configuration needs to be implemented by Layer 2 ACL; a Layer 2 ACL ranges from 4000 to 4999.
For more information about ACLs, see ACL in the ACL and QoS Configuration Guide.
Follow these steps to control Telnet users by source MAC addresses:
To do… Use the command… Remarks
Enter system view
system-view
—
Create a basic ACL
or enter basic ACL
view
acl
number
acl-number [
name
acl-name ]
[
match-order
{
auto
|
config
} ]
As for the
acl number
command, the
config
keyword is specified by default.
Define rules for the
ACL
rule
[ rule-id ] {
permit
|
deny
} rule-string
Required
You can define rules as needed to filter
by specific source MAC addresses.
Quit to system view
quit
—
Enter user interface
view
user-interface
{ first-num1 [ last-num1 ] |
{
console
|
vty
} first-num2 [ last-num2 ] }
—
Apply the ACL to
control Telnet users
by source MAC
addresses
acl
acl-number
inbound
Required
The
inbound
keyword specifies to filter
the users trying to Telnet to the current
access point.
To Next Page
Loading...
Need help?
General
