H3C S7500E Series Ethernet Switches Operation Manual
Operation Manual – Login
H3C S7500E Series Ethernet Switches Chapter 7 Controlling Login Users
7-5
7.3.2 Controlling Network Management Users by Source IP Addresses
Follow these steps to control network management users by source IP addresses:
To do… Use the command… Remarks
Enter system view
system-view
—
Create a basic ACL or
enter basic ACL view
acl number acl-number [ match-order
{ config | auto } ]
As for the acl
number
command, the
config
keyword is
specified by
default.
Define rules for the
ACL
rule [ rule-id ] { permit | deny } [ source
{ sour-addr sour-wildcard | any } |
time-range time-name | fragment |
logging ]*
Required
Quit to system view
quit
—
Apply the ACL while
configuring the SNMP
community name
snmp-agent community { read | write }
community-name [ mib-view view-name
| acl acl-number ]*
Required
Apply the ACL while
configuring the SNMP
group name
snmp-agent group { v1 | v2c }
group-name [ read-view read-view ]
[ write-view write-view ] [ notify-view
notify-view ] [ acl acl-number ]
snmp-agent group v3 group-name
[ authentication | privacy ] [ read-view
read-view ] [ write-view write-view ]
[ notify-view notify-view ] [ acl
acl-number ]
Required
Apply the ACL while
configuring the SNMP
user name
snmp-agent usm-user { v1 | v2c }
user-name group-name [ acl
acl-number ]
snmp-agent usm-user v3 user-name
group-name [ authentication-mode
{ md5 | sha } auth-password
[ privacy-mode { des56 | aes128 }
priv-password ] ] [ acl acl-number ]
Required
Note:
You can specify different ACLs while configuring the SNMP community name, the
SNMP group name and the SNMP user name.
As SNMP community name is a feature of SNMPv1 and SNMPv2c, the specified ACLs
in the command that configures SNMP community names (the snmp-agent