Configuring source mac-based telnet login control, Telnet login control configuration example, Network requirements – H3C Technologies H3C S12500 Series Switches User Manual
Page 76
64
Step Command
Remarks
5.
Enter user interface.
user-interface [ type ] first-number
[ last-number ]
N/A
6.
Use the ACL to control user
login by source and
destination IP addresses.
acl [ ipv6 ] acl-number { inbound |
outbound }
•
inbound—Filters incoming
Telnet packets.
•
outbound—Filters outgoing
Telnet packets.
Configuring source MAC-based Telnet login control
Ethernet frame header ACLs apply to Telnet traffic only if the Telnet client and server are located in the
same subnet.
To configure source MAC-based Telnet login control:
Step Command
Remarks
1.
Enter system view.
system-view N/A
2.
Create an Ethernet frame
header ACL and enter its
view.
acl number acl-number [ name
name ] [ match-order { config |
auto } ]
By default, no Ethernet frame
header ACL exists.
3.
Configure rules for the ACL.
rule [ rule-id ] { permit | deny }
rule-string
N/A
4.
Exit the advanced ACL view.
quit
N/A
5.
Enter user interface view.
user-interface [ type ] first-number
[ last-number ]
N/A
6.
Use the ACL to control user
login by source MAC
address.
acl acl-number inbound
inbound: Filters incoming Telnet
packets.
Telnet login control configuration example
Network requirements
As shown in
, configure an ACL on the switch to permit only incoming Telnet packets sourced
from Host A and Host B.