标签:h3c acl telnet登录限制
对路由器的Telnet和Web的登录访问控制:新建基本的访控2000,加入允许访问的IP地址,分别对VTY和http服务应该访问2000,保存配置。
<h3c>sys
[h3c]acl number 2000 name loginip
[h3c-acl-basic-2000-loginip]rule permit source 192.168.4.5 0
[h3c-acl-basic-2000-loginip]rule permit source 192.168.5.6 0
[h3c-acl-basic-2000-loginip]quit
[h3c]user-interface vty ?
INTEGER<0-4> First user terminal interface number to be configured
[h3c]user-interface vty 0 4
[h3c-ui-vty0-4]acl 2000 inbound
[h3c-ui-vty0-4]quit
[h3c]ip http acl 2000
[h3c]save
The current configuration will be written to the device. Are you sure? [Y/N]:y
Please input the file name(*.cfg)[flash:/startup.cfg]
(To leave the existing filename unchanged, press the enter key):
flash:/startup.cfg exists, overwrite? [Y/N]:y
Validating file. Please wait....
Configuration is saved to device successfully.
[h3c]quit
以下是配置登录限制后的日志监控效果
本文出自 “加油站” 博客,请务必保留此出处http://vmobile.blog.51cto.com/851941/1550302
标签:h3c acl telnet登录限制
原文地址:http://vmobile.blog.51cto.com/851941/1550302
