R3166-R3206-HP High-End Firewalls Getting Started Command Reference-6PW101
16
NOTE:
• The system automatically terminates the user’s connection(s) if there is no information interaction
between the device and the users within the idle timeout time.
• Setting idle-timeout to zero disables the timer. In this case, connections are maintained unless you
terminate them.
Examples
# Set the idle-timeout timer to 1 minute and 30 seconds.
<Sysname> system-view
[Sysname] user-interface console 0
[Sysname-ui-console0] idle-timeout 1 30
ip http acl
Syntax
ip http acl acl-number
undo ip http acl
View
System view
Default level
2: System level
Parameters
acl-number: ACL number, which ranges from 2000 to 2999.
Description
Use the ip http acl command to associate the HTTP service with an ACL.
Use the undo ip http acl command to remove the association.
By default, the HTTP service is not associated with any ACL.
The HTTP service can be associated with a basic ACL, and the ACLs will overwrite each other. In other
words, if you execute the ip http acl command multiple times to associate the HTTP service with the same
type of ACLs, the HTTP service is only associated with the last specified ACL.
Related commands: display ip http.
Examples
# Associate the HTTP service with ACL 2001 to only allow the clients within the 10.10.0.0/16 network to
access the device through HTTP.
<Sysname> system-view
[Sysname] acl number 2001
[Sysname-acl-basic-2001] rule permit source 10.10.0.0 0.0.255.255
[Sysname-acl-basic-2001] quit
[Sysname] ip http acl 2001