HP A-F1000-E Getting Started Manual page 118
High-end firewalls
Hide thumbs
Also See for A-F1000-E:
- Product end-of-life disassembly instructions (3 pages) ,
- Installation manual (75 pages)
Table of Contents
Advertisement
To do...
Create an Ethernet frame header
ACL and enter its view, or enter the
view of an existing Ethernet frame
header ACL
Configure rules for the ACL
Exit the advanced ACL view
Enter user interface view
Use the ACL to control user login
by source MAC address
NOTE:
The configuration does not take effect if the Telnet client and server are not in the same subnet.
Source MAC-based login control configuration example
Network requirements
1.
As shown in
A and Host B.
Figure 71 Network diagram for configuring source MAC-based login control
Configuration procedure
2.
# Create basic ACL 2000, and configure rule 1 to permit packets sourced from Host B, and rule 2 to
permit packets sourced from Host A.
<Firewall> system-view
[Firewall] acl number 2000 match-order config
[Firewall-acl-basic-2000] rule 1 permit source 10.110.100.52 0
[Firewall-acl-basic-2000] rule 2 permit source 10.110.100.46 0
[Firewall-acl-basic-2000] quit
# Reference ACL 2000 in user interface view to allow Telnet users from Host A and Host B to access the
Firewall.
[Firewall] user-interface vty 0 4
Figure
71, configure an ACL on the Firewall to permit only Telnet packets sourced from Host
Use the command...
acl number acl-number
[ match-order { config | auto } ]
rule [ rule-id ] { permit | deny }
rule-string
quit
user-interface [ type ] first-number
[ last-number ]
acl acl-number inbound
112
Remarks
Required
By default, no advanced ACL
exists.
Required
—
—
Required
inbound: Filters incoming Telnet
packets.
- Quick Links:
- Firewall A-F1000
Hide quick links:
Advertisement
Table of Contents
