To do…

 

Use the command…

 

Remarks

 

Enter system view

 

system-view

 

 

 

 

 

 

 

 

Create a basic ACL or

 

acl number acl-number

 

As for the acl number command,

 

 

 

the config keyword is specified by

 

enter basic ACL view

 

[ match-order { config auto } ]

 

 

 

 

default.

 

 

 

 

 

 

 

 

 

 

 

 

Define rules for the

 

rule [ rule-id] { deny permit }

Required

 

ACL

[ rule-string ]

 

 

 

 

 

 

 

 

 

 

Quit to system view

 

quit

 

 

 

 

 

 

 

Enter user interface

 

user-interface[ type ] first-number

 

view

[ last-number ]

 

 

 

 

 

 

Required

 

 

 

 

The inbound keyword specifies to

 

Apply the ACL to

 

acl acl-number{ inbound

filter the users trying to Telnet to the

 

 

current switching engine.

 

control Telnet users by

 

 

outbound }

The outbound keyword specifies to

 

source IP addresses

 

 

 

 

 

 

 

filter users trying to Telnet to other

 

 

 

 

devices from the current switching

 

 

 

 

engine.

 

 

 

 

 

 

Controlling Telnet Users by Source and Destination IP Addresses

Controlling Telnet users by source and destination IP addresses is achieved by applying advanced ACLs, which are numbered from 3000 to 3999.

Follow these steps to control Telnet users by source and destination IP addresses:

To do…

Use the command…

Remarks

Enter system view

system-view

 

 

 

Create an advanced

acl number acl-number

As for the acl number command, the

ACL or enter advanced

config keyword is specified by

[ match-order { config auto } ]

ACL view

default.

 

 

 

 

 

 

Required

Define rules for the

rule [ rule-id] { deny permit }

You can define rules as needed to

ACL

protocol [ rule-string ]

filter by specific source and

 

 

destination IP addresses.

 

 

 

Quit to system view

quit

 

 

 

Enter user interface

user-interface [ type ]

view

first-number [ last-number ]

 

 

 

 

 

 

Required

Apply the ACL to

 

The inbound keyword specifies to

 

filter the users trying to Telnet to the

control Telnet users by

acl acl-number{ inbound

current switching engine.

specified source and

outbound }

The outbound keyword specifies to

destination IP

 

addresses

 

filter users trying to Telnet to other

 

 

devices from the current switching

 

 

engine.

 

 

 

7-2

Page 49
Image 49
3Com WX3000 Acl number acl-number, Match-order config auto, Rule rule-id deny permit, Acl acl-number inbound, Outbound