Operation Manual – Login
H3C S3610&S5510 Series Ethernet Switches
Chapter 8 Controlling Login Users
8-3
To do…
Use the command…
Remarks
Quit to system view
quit
—
Enter user interface view
user-interface
[
type
]
first-number
[
last-number
]
—
Apply the ACL to control
Telnet users by specified
source and destination IP
addresses
acl
[
ipv6
]
acl-number
{
inbound
|
outbound
}
Required
The
inbound
keyword
specifies to filter the users
trying to Telnet to the
current switch.
The
outbound
keyword
specifies to filter users
trying to Telnet to other
switches from the current
switch.
8.2.4 Controlling Telnet Users by Source MAC Addresses
Controlling Telnet users by source MAC addresses is achieved by applying Layer 2
ACLs, which are numbered from 4000 to 4999. Refer to the ACL module for information
about defining an ACL.
To do…
Use the command…
Remarks
Enter system view
system-view
—
Create a basic ACL or
enter basic ACL view
acl
number
acl-number
[
match-order
{
config
|
auto
} ]
As for the
acl number
command, the
config
keyword is specified by
default.
Define rules for the ACL
rule
[
rule-id
] {
permit
|
deny
}
rule-string
Required
You can define rules as
needed to filter by specific
source MAC addresses.
Quit to system view
quit
—
Enter user interface view
user-interface
[
type
]
first-number
[
last-number
]
—
Apply the ACL to control
Telnet users by source
MAC addresses
acl
acl-number inbound
Required
The
inbound
keyword
specifies to filter the users
trying to Telnet to the
current switch.