HP 6125G HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 18
Configuration procedure, Network diagram
 |
View all HP 6125G manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 18 highlights
• As an FTP server, the switch accepts the login requests from only the NMS. Figure 1 Network diagram Configuration procedure 1. Limit the telnet login requests: # Create a time range named telnet to cover 8:30 to 18:00 of every working day. system-view [Switch] time-range telnet 8:30 to 18:00 working-day # Create IPv4 basic ACL 2000, and configure a rule for the ACL to permit the packets sourced from 10.1.3.1 during only the time specified by time range telnet. [Switch] acl number 2000 [Switch-acl-basic-2000] rule permit source 10.1.3.1 0 time-range telnet [Switch-acl-basic-2000] quit # Apply ACL 2000 to the inbound traffic of all telnet user interfaces to limit the telnet login requests. [Switch] user-interface vty 0 7 [Switch-ui-vty0-7] acl 2000 inbound 2. Limit the access to the TFTP server: # Create IPv4 basic ACL 2001, and configure a rule for the ACL to permit only the packets sourced from 11.1.1.100. [Switch] acl number 2001 [Switch-acl-basic-2001] rule permit source 11.1.1.100 0 [Switch-acl-basic-2001] quit # Use ACL 2001 to control the switch's access to a specific TFTP server. [Switch] tftp-server acl 2001 3. Limit the FTP login requests: 12
-
1 -
2
-
3
-
4
-
5
-
6
-
7
-
8
-
9
-
10
-
11
-
12
-
13 -
14 -
15 -
16 -
17 -
18 -
19 -
20 -
21 -
22 -
23 -
24
-
25
-
26
-
27
-
28
-
29
-
30
-
31
-
32
-
33
-
34
-
35
-
36
-
37
-
38
-
39
-
40
-
41
-
42
-
43
-
44
-
45
-
46
-
47
-
48
-
49
-
50
-
51
-
52
-
53
-
54
-
55
-
56
-
57
-
58
-
59
-
60
-
61
-
62
-
63
-
64
-
65
-
66
-
67
-
68
-
69
-
70
-
71
-
72
-
73
-
74
-
75
-
76
-
77
-
78
-
79
-
80
-
81
-
82
-
83
-
84
 |
 |
