Controlling telnet users by source mac addresses, Configuration example, Network requirements – H3C Technologies H3C S3600 Series Switches User Manual

8-3

To do…

Use the command…

Remarks

Enter user interface view

user-interface [ type ]
first-number [ last-number ]

—

Apply the ACL to control
Telnet users by specified
source and destination IP
addresses

acl acl-number { inbound |
outbound }

Required

The inbound keyword specifies to
filter the users trying to Telnet to
the current switch.

The outbound keyword specifies
to filter users trying to Telnet to
other switches from the current
switch.

Controlling Telnet Users by Source MAC Addresses

Controlling Telnet users by source MAC addresses is achieved by applying Layer 2 ACLs, which are

numbered from 4000 to 4999.

Follow these steps to control Telnet users by source MAC addresses:

To do…

Use the command…

Remarks

Enter system view

system-view

—

Create or enter Layer 2
ACL view

acl number acl-number

—

Define rules for the ACL

rule [ rule-id ] { deny | permit }
[ rule-string ]

Required

You can define rules as
needed to filter by specific
source MAC addresses.

Quit to system view

quit

—

Enter user interface view

user-interface [ type ] first-number
[ last-number ]

—

Apply the ACL to control
Telnet users by specified
source MAC addresses

acl acl-number inbound

Required

By default, no ACL is applied
for Telnet users.

Configuration Example

Network requirements

Only the Telnet users sourced from the IP address of 10.110.100.52 are permitted to access the switch.