1 access management configuration, Access management overview, Access management configuration – H3C Technologies H3C S3600 Series Switches User Manual
Page 1142
1-1
1
Access Management Configuration
When configuring access management, go to these sections for information you are interested in:
z
z
z
Access Management Configuration Examples
Access Management Overview
Normally, client PCs in a network are connected to switches operating on the network access layer
(also referred to as access switches) through Layer 2 switches; and the access switches provide
external network accesses for the client PCs through their upstream links. In the network shown in
, Switch A is an access switch; Switch B is a Layer 2 switch.
Figure 1-1 Typical Ethernet access networking scenario
Switch A
Switch B
Eth1/0/1
PC1_1
PC1_2
PC1_n
PC2
PC3
Internet
Organization1
The access management function aims to manage user access rights on access switches. It enables
you to manage the external network access rights of the hosts connected to ports of an access switch.
To implement the access management function, you need to configure an IP address pool on a port of
an access switch, that is, bind a specified range of IP addresses to the port.
z
A port with an access management IP address pool configured only allows the hosts with their IP
addresses in the access management IP address pool to access external networks.
z
A port without an access management IP address pool configured allows the hosts to access
external networks only if their IP addresses are not in the access management IP address pools of
other ports of the switch.
Note that the IP addresses in the access management IP address pool configured on a port must be in
the same network segment as the IP address of the VLAN (where the port belongs to) interface.