华为-H3C:登陆权限控制:
通过源ip控制登陆用户,该策略配置后,只允许acl内的IP访问该设备
1. [9F-3600V2-EI-jifang]acl number 2500 match-order config 建立基本acl规则
2. [9F-3600V2-EI-jifang-acl-basic-2500]dis th 编写规则
#
acl number 2500
rule 1 permit source 192.168.1.2 0
rule 2 permit source 192.168.1.3 0
rule 3 permit source 192.168.11.30 0
rule 4 permit source 192.168.11.20 0
rule 5 permit source 192.168.20.254 0
rule 100 deny
#
3. user-interface vty 0 4 应用到接口上 控制ssh登录
acl 2500 inbound
[9F-3600V2-EI-jifang]ip http acl 2500 控制http登录
4.snmp-agent community read bebepay acl 2500 控制snmp抓取数据
转载于:https://blog.51cto.com/cqtangbo/1752481