HP A3100-16 v2 EI, A3100-16 v2 SI, A3100-16-PoE v2 EI, A3100-24 v2 EI, A3100-24-PoE v2 EI, A3100-8 DC EI, A3100-8 v2 SI, A3100-8-PoE v2 EI, JD311B, JD312B, JD313B, JD318B, JD320B, JG221A, JG222A, JG223A Configuring source IP-basedlogin control over NMS users, Configuration preparation, Configuring source IP-basedlogin control over NMS users

[Sysname] user-interface vty 0 4 [Sysname-ui-vty0-4] acl 2000 inbound

Configuring source IP-based login control over NMS users

You can log in to the NMS to remotely manage the devices. SNMP is used for communication between the NMS and the agent that resides in the device. By using the ACL, you can control SNMP user access to the device.

Configuration preparation

Before configuration, determine the permitted or denied source IP addresses.

Configuring source IP-based login control over NMS users

Because basic ACLs match the source IP addresses of packets, you can use basic ACLs to implement source IP-based login control over NMS users. Basic ACLs are numbered from 2000 to 2999. For more information about ACL, see the ACL and QoS Configuration Guide.

Follow these steps to configure source IP-based login control over NMS users:

To do…	Use the command…	Remarks
Enter system view	system-view	—

Create a basic ACL and enter its	acl [ ipv6 ] number acl-number	Required
view, or enter the view of an	acl [ ipv6 ] number acl-number	Required
view, or enter the view of an	[ match-order { config auto } ]	By default, no basic ACL exists.
existing basic ACL	[ match-order { config auto } ]	By default, no basic ACL exists.
existing basic ACL

	rule [ rule-id] { permit deny }
Create rules for this ACL	[ source { sour-addr sour-wildcard	Required
Create rules for this ACL	any } time-range time-name	Required
	any } time-range time-name
	fragment logging ]*

Exit the basic ACL view	quit	—

Associate this SNMP community	snmp-agent community { read	Required
Associate this SNMP community	write } community-name [ acl	You can associate the ACL when
with the ACL	acl-number mib-view	You can associate the ACL when
with the ACL	acl-number mib-view	creating the community, the SNMP
	view-name ]*	creating the community, the SNMP
	view-name ]*	group, and the user.
		group, and the user.
	snmp-agent group { v1 v2c }	For more information about
	group-name [ read-view	SNMP, see the Network
	read-view] [ write-view	Management and Monitoring
	write-view] [ notify-view	Configuration Guide.
Associate the SNMP group with	notify-view ] [ acl acl-number ]
Associate the SNMP group with	snmp-agent group v3 group-name
the ACL	snmp-agent group v3 group-name
the ACL	[ authentication privacy ]
	[ authentication privacy ]
	[ read-view read-view]
	[ write-view write-view]
	[ notify-view notify-view] [ acl
	acl-number ]

HP Configuring source IP-basedlogin control over NMS users, Configuration preparation, Configuring source IP-basedlogin control over NMS users

Models: A3100-16 v2 EI A3100-16 v2 SI A3100-16-PoE v2 EI A3100-24 v2 EI A3100-24-PoE v2 EI A3100-8 DC EI A3100-8 v2 SI A3100-8-PoE v2 EI JD311B JD312B JD313B JD318B JD320B JG221A JG222A JG223A

Configuring source IP-based login control over NMS users

Configuring source IP-based login control over NMS users