Controlling telnet users by source mac addresses – H3C Technologies H3C WX3000 Series Unified Switches User Manual

1-2

To do…

Use the command…

Remarks

Enter system view

system-view

—

Create a basic ACL or
enter basic ACL view

acl number

acl-number

[ match-order { config | auto } ]

As for the acl number command, the
config

keyword is specified by default.

Define rules for the ACL

rule

[ rule-id ] { deny | permit }

[ rule-string ]

Required

Quit to system view

quit

—

Enter user interface view

user-interface

[ type ] first-number

[ last-number ]

—

Apply the ACL to control
Telnet users by source IP
addresses

acl

acl-number { inbound |

outbound

}

Required
The inbound keyword specifies to filter
the users trying to Telnet to the current
switching engine.
The outbound keyword specifies to
filter users trying to Telnet to other
devices from the current switching
engine.

Controlling Telnet Users by Source and Destination IP Addresses

Controlling Telnet users by source and destination IP addresses is achieved by applying advanced
ACLs, which are numbered from 3000 to 3999.

Follow these steps to control Telnet users by source and destination IP addresses:

To do…

Use the command…

Remarks

Enter system view

system-view

—

Create an advanced ACL
or enter advanced ACL
view

acl number

acl-number

[ match-order { config | auto } ]

As for the acl number command, the
config

keyword is specified by default.

Define rules for the ACL

rule

[ rule-id ] { deny | permit }

protocol

[ rule-string ]

Required
You can define rules as needed to filter by
specific source and destination IP
addresses.

Quit to system view

quit

—

Enter user interface view

user-interface

[ type ] first-number

[ last-number ]

—

Apply the ACL to control
Telnet users by specified
source and destination IP
addresses

acl

acl-number { inbound |

outbound

}

Required
The inbound keyword specifies to filter
the users trying to Telnet to the current
switching engine.
The outbound keyword specifies to filter
users trying to Telnet to other devices
from the current switching engine.

Controlling Telnet Users by Source MAC Addresses

Controlling Telnet users by source MAC addresses is achieved by applying Layer 2 ACLs, which are
numbered from 4000 to 4999.