3 “controlling telnet, Users by source and destination, Ip addresses – H3C Technologies H3C S3100 Series Switches User Manual

Operation Manual – Login

H3C S3100-52P Ethernet Switch

Chapter 8 User Control

8-2

Table 8-2

Control Telnet users by source IP addresses

Operation

Command

Description

Enter system view system-view

—

Create a basic ACL

or enter basic ACL

view

acl number

acl-number

[ match-order { config |
auto

} ]

As for the acl number

command, the config

keyword is specified by

default.

Define rules for the

ACL

rule

[ rule-id ] { permit |

deny

} [ fragment | source

{ sour-addr sour-wildcard |
any

} | time-range

time-name

]*

Required

Quit to system view

quit

—

Enter user

interface view

user-interface

[ type ]

first-number

[ last-number ]

—

Apply the ACL to

control Telnet

users by source IP

addresses

acl

acl-number { inbound |

outbound

}

Required
The

inbound

keyword

specifies to filter the users

trying to Telnet to the current

switch.
The outbound keyword

specifies to filter users trying

to Telnet to other switches

from the current switch.

8.2.3 Controlling Telnet Users by Source and Destination IP Addresses

Controlling Telnet users by source and destination IP addresses is achieved by
applying advanced ACLs, which are numbered from 3000 to 3999. Refer to the ACL
module for information about defining an ACL.

Table 8-3

Control Telnet users by source and destination IP addresses

Operation

Command

Description

Enter system view system-view

—

Create an

advanced ACL or

enter advanced

ACL view

acl number

acl-number

[ match-order { config |
auto

} ]

As for the acl number

command, the config

keyword is specified by

default.