13 access management, 14 access-list ace – PLANET SGS-5220-24T2X User Manual
Page 52
Command Guide of SGS-5220-24T2X
Switch# configure terminal
Switch (config)# aaa authentication login telnet local radius tacacs
4.2.13 access management
Command:
access management <AccessId : 1-16> <AccessVid : 1-4095> <AddrRangeStart :
ipv4_addr | ipv6_addr> all | snmp | telnet | to | Web
<AccessId : 1-16> ID of access management entry
<AccessVid : 1-4095> The VLAN ID for the access management entry
<AddrRangeStart : ipv4_addr> Start IPv4 address
<AddrRangeStart : ipv6_addr> Start IPv6 address
all All services
snmp SNMP service
telnet TELNET/SSH service
to End address of the range
web Web service
Default:
access management : disable
Usage Guide:
To enable the access management profile to allow SNMP / Telnet / HTTP services.
Example:
To create a Profile 1 enabling all services for VLAN 1 (IPv6 address 2001::7788) .
Switch# configure terminal
Switch (config)# access management 1 1 2001::7788 all
4.2.14 access-list ace
Command:
access-list ace <AceId : 1-512> action {deny, permit} | dmac-type {any, broadcast,
multicast, unicast} | frametype {any, arp, etype, ipv4, ipv4-icmp, ipv4-tcp, ipv4-udp,
ipv6, ipv6-icmp, ipv6-tcp, ipv6-udp} | ingress {any, interface 10GigabitEthernet |
-52-