7-2
To do… Use the command… Remarks
Enter system view system-view —
Create a basic ACL or
enter basic ACL view acl number acl-number
[ match-order { config | auto } ]
As for the acl number command,
the config keyword is specified by
default.
Define rules for the
ACL rule [ rule-id ] { deny | permit }
[ rule-string ] Required
Quit to system view quit —
Enter user interface
view user-interface [ type ] first-number
[ last-number ] —
Apply the ACL to
control Telnet users by
source IP addresses
acl acl-number { inbound |
outbound }
Required
The inbound keyword specifies to
filter the users trying to Telnet to the
current switching engine.
The outbound keyword specifies to
filter users trying to Telnet to other
devices from the current switching
engine.
Controlling Telnet users by source and destination IP addresses is achieved by applying advanced
ACLs, which are numbered from 3000 to 3999.
Follow these steps to control Telnet users by source and destination IP addresses:
To do… Use the command… Remarks
Enter system view system-view —
Create an advanced
ACL or enter advanced
ACL view
acl number acl-number
[ match-order { config | auto } ]
As for the acl number command, the
config keyword is specified by
default.
Define rules for the
ACL rule [ rule-id ] { deny | permit }
protocol [ rule-string ]
Required
You can define rules as needed to
filter by specific source and
destination IP addresses.
Quit to system view quit —
Enter user interface
view user-interface [ type ]
first-number [ last-number ] —
Apply the ACL to
control Telnet users by
specified source and
destination IP
addresses
acl acl-number { inbound |
outbound }
Required
The inbound keyword specifies to
filter the users trying to Telnet to the
current switching engine.
The outbound keyword specifies to
filter users trying to Telnet to other
devices from the current switching
engine.