Operation Manual - QoS/ACL
Quidway S3500 Series Ethernet Switches Chapter 3 Logon User ACL Control Configuration
Huawei Technologies Proprietary
3-4
3.3.2 Calling ACL to Control SNMP Users
To control the NM users with ACL, call the defined ACL when configuring SNMP
community name, username, and group name.
You can use the following commands to call an ACL.
Perform the following configuration in system view.
Table 3-3 Defining a numbered basic ACL
Operation Command
Call an ACL when
configuring SNMP
community name.
snmp-agent community { read | write }
community-name [ [ mib-view view-name ] | [ acl
acl-number ] ]*
Call an ACL when
configuring SNMP
group name.
snmp-agent group { v1 | v2c } group-name [ read-view
read-view ] [ write-view write-view ] [ notify-view
notify-view ] [ acl acl-list ]
snmp-agent group v3 group-name [ authentication |
privacy ] [ read-view read-view ] [ write-view write-view ]
[ notify-view notify-view ] [ acl acl-list ]
Call an ACL when
configuring SNMP
username.
snmp-agent usm-user { v1 | v2c } user-name
group-name [ acl acl-list ]
snmp-agent usm-user v3 user-name group-name
[ authentication-mode { md5 | sha } auth-password ]
[ privacy-mode des56 priv-password ] [ acl acl-list ]
SNMP community name attribute is a feature of SNMP V1. Therefore calling an ACL for
SNMP community name configuration can filter the access to SNMP V1network
management system.
SNMP group name and username attribute is a feature of SNMP V2C and above.
Therefore calling an ACL for SNMP community name configuration can filter the access
to the network management system of SNMP V2C or higher. If you configure ACL
control in both of the commands, the switch will filter the NM users concerning both the
features.
Note:
You can call different ACLs for the above mentioned commands.
For more about the commands, refer to the Command Manual.
To Next Page
Loading...
