為了提高交換器安全,可以在 交換器上面啟動ACL保護交換器不被一般使用者TELNET,只允許特定的 IP 進來存取
主要差別在於 Comware 7 下在Global 而 Comware 5 下在user-interface
Comware 7設備下法如下
[C]telnet server ?
acl Specify an ACL to control telnet clients' access
dscp Set the Differentiated Services Codepoint (DSCP) value
enable Enable telnet server function
ipv6 IPv6 information
Comware 5 設備下法如下
# Define ACL 2000.
<device> system-view
[device] acl number 2000
[device-acl-basic-2000] rule 1 permit source 10.110.100.52 0
[device-acl-basic-2000] quit
# Reference ACL 2000 on VTY user interface to control Telnet login users.
[device] user-interface vty 0 4
[device-ui-vty0-4] acl 2000 inbound