Step
2.
Create an advanced ACL
and enter its view, or enter
the view of an existing
advanced ACL.
3.
Configure an ACL rule.
4.
Exit advanced ACL view.
5.
Enter user interface view.
6.
Use the ACL to control user
logins by source and
destination IP addresses.
Configuring source MAC-based Telnet login control
Ethernet frame header ACLs apply to Telnet traffic only if the Telnet client and server are located in
the same subnet.
To configure source MAC-based Telnet login control:
Step
1.
Enter system view.
2.
Create an Ethernet frame
header ACL and enter its
view.
3.
Configure an ACL rule.
4.
Exit Ethernet frame header
ACL view.
5.
Enter user interface view.
6.
Use the ACL to control user
logins by source MAC
address.
Telnet login control configuration example
Network requirements
As shown in
sourced from Host A and Host B.
Command
acl [ ipv6 ] number acl-number
[ name name ] [ match-order
{ config | auto } ]
rule [ rule-id ] { permit | deny }
rule-string
quit
user-interface [ type ]
first-number [ last-number ]
acl [ ipv6 ] acl-number { inbound
| outbound }
Command
system-view
acl number acl-number [ name
name ] [ match-order { config |
auto } ]
rule [ rule-id ] { permit | deny }
rule-string
quit
user-interface [ type ]
first-number [ last-number ]
acl acl-number inbound
Figure
23, configure an ACL on the device to permit only incoming Telnet packets
60
Remarks
By default, no advanced ACL
exists.
N/A
N/A
N/A
•
inbound: Filters incoming
packets.
•
outbound: Filters outgoing
packets.
Remarks
N/A
By default, no Ethernet frame
header ACL exists.
N/A
N/A
N/A
inbound: Filters incoming
packets.