Operation Manual – Login
H3C S3610&S5510 Series Ethernet Switches
Chapter 8 Controlling Login Users
8-8
8.4.2 Controlling Web Users by Source IP Addresses
Controlling Web users by source IP addresses is achieved by applying basic ACLs,
which are numbered from 2000 to 2999.
To do…
Use the command…
Remarks
Enter system view
system-view
—
Create a basic ACL or
enter basic ACL view
acl number
acl-number
[
match-order
{
config
|
auto
} ]
As for the
acl number
command, the
config
keyword is specified by
default.
Define rules for the ACL
rule
[
rule-id
] {
permit
|
deny
} [
source
{
sour-addr sour-wildcard
|
any
} |
time-range
time-name
|
fragment
|
logging
]*
Required
Quit to system view
quit
—
Apply the ACL to control
Web users
ip http acl
acl-number
Optional
8.4.3 Disconnecting a Web User by Force
The administrator can disconnect a Web user by force using the related command.
To do…
Use the command…
Remarks
Disconnect a Web user by
force
free web-users
{
all
|
user-id user-id
|
user-name user-name
}
Required
Execute this command in
user view.
8.4.4 Configuration Example
I. Network requirements
Only the users sourced from the IP address of 10.110.100.52 are permitted to access
the switch.