H3C S7500 Series Ethernet Switches Operation Manual
Operation Manual – Login
H3C S7500 Series Ethernet Switches Chapter 6
User Control
6-2
To do… Use the command… Remarks
Enter system view
system-view
—
Create a basic ACL or
enter basic ACL view
acl { number acl-number
| name acl-name
[ advanced | basic | link |
user ] } [ match-order
{ config | auto } ]
As for the acl number
command, the config
keyword is specified by
default.
Define rules for the ACL
rule [ rule-id ] { permit |
deny } [ source
{ source-addr wildcard |
any } | fragment |
time-range time-name ]*
Required
Return to system view
quit
—
Enter user interface view
user-interface [ type ]
first-number
[ last-number ]
—
Apply the ACL to control
Telnet users by source IP
addresses
acl acl-number { inbound
| outbound }
Required
The inbound keyword
specifies to filter the users
trying to Telnet to the
current switch.
The outbound keyword
specifies to filter users
trying to Telnet to other
switches from the current
switch.
6.2.2 Controlling Telnet Users by Source and Destination IP Addresses
Controlling Telnet users by source and destination IP addresses is achieved by
applying advanced ACLs, which are numbered from 3000 to 3999. Refer to the ACL
module for information about defining an ACL.
Follow these steps to control Telnet users by source and destination IP addresses:
To do… Use the command… Remarks
Enter system view
system-view
—
Create an advanced ACL
or enter advanced ACL
view
acl { number acl-number
| name acl-name
[ advanced | basic | link |
user ] } [ match-order
{ config | auto } ]
As for the acl number
command, the config
keyword is specified by
default.