Operation Manual – Login
H3C S3610&S5510 Series Ethernet Switches
Chapter 8 Controlling Login Users
8-5
8.3.1 Prerequisites
The controlling policy against network management users is determined, including the
source IP addresses to be controlled and the controlling actions (permitting or denying).
8.3.2 Controlling Network Management Users by Source IP Addresses
Controlling network management users by source IP addresses is achieved by
applying basic ACLs, which are numbered from 2000 to 2999. Refer to the ACL module
for information about defining an ACL.
To do…
Use the command…
Remarks
Enter system view
system-view
—
Create a basic ACL or
enter basic ACL view
acl number
acl-number
[
match-order
{
config
|
auto
} ]
As for the
acl number
command, the
config
keyword is specified by
default.
Define rules for the ACL
rule
[
rule-id
] {
permit
|
deny
} [
source
{
sour-addr sour-wildcard
|
any
} |
time-range
time-name
|
fragment
|
logging
]*
Required
Quit to system view
quit
—
Apply the ACL while
configuring the SNMP
community name
snmp-agent community
{
read
|
write
}
community-name
[
mib-view
view-name
|
acl
acl-number
]*
Required
Apply the ACL while
configuring the SNMP
group name
snmp-agent group
{
v1
|
v2c
}
group-name
[
read-view
read-view
]
[
write-view
write-view
]
[
notify-view
notify-view
]
[
acl
acl-number
]
snmp-agent group
v3
group-name
[
authentication
|
privacy
] [
read-view
read-view
] [
write-view
write-view
] [
notify-view
notify-view
] [
acl
acl-number
]
Required