R3204P16-HP Load Balancing Module System Management Configuration Guide-6PW101
80
User login control
User login control overview
The LB module provides the following login control methods:
Lo
g
in Throu
g
h Lo
g
in control methods
ACL used
Telnet
Configuring source IP-based login c
ontrol over Telnet users Basic ACL
Configuring source and destination IP-based login control over Telnet
users
Advanced ACL
Configuring source MAC-based login control over Telnet users
Ethernet frame
header ACL
NMS Configuring source IP-based login control over NMS users Basic ACL
Web Configuring source IP-based login control over web users Basic ACL
Configuring login control over Telnet users
Configuration preparation
Before configuration, determine the permitted or denied source IP addresses, source MAC addresses,
and destination IP addresses.
Configuring source IP-based login control over Telnet users
Basic ACLs match the source IP addresses of packets. You can use basic ACLs to implement source
IP-based login control over Telnet users. Basic ACLs are numbered from 2000 to 2999. For more
information about ACL, see Security Configuration Guide.
Follow these steps to configure source IP-based login control over Telnet users:
To do… Use the command…
Remarks
Enter system view system-view —
Create a basic ACL and enter
its view, or enter the view of an
existing basic ACL
acl number acl-number
[ match-order { config | auto } ]
Required
By default, no basic ACL exists.
Configure rules for this ACL
rule [ rule-id ] { permit | deny }
[ source { sour-addr
sour-wildcard | any } |
time-range time-name |
fragment | logging ]*
Required
Exit the basic ACL view
quit —
Enter user interface view
user-interface [ type ]
first-number [ last-number ]
—