Netgear M5300-28G-POE+ (GSM7228PSv1h2) - 12-Port Managed Gigabit Switch Ratgeber Für Administratoren
ACLs
262
Managed Switches
A screen similar to the following displays.
b. In the Sequence Number field, enter 1.
c. In the Port Selection Table, click Unit 1 to display all the ports.
d. Select the check box below Port 1.
e. Click Apply.
Configure a Management ACL
A management ACL lets you control access to the switch. You can permit specific hosts to
access the switch and deny access to all other hosts. You can also specify a specific access
method for a permitted host. For example, you can specify that a host can access the switch
over a Telnet connection only
method for a permitted host. For example, you can specify that a host can access the switch
over a Telnet connection only
The following example shows how to configure a management ACL.
Example 1: Permit Any Host to Access the Switch Through
Telnet or HTTP:
Telnet or HTTP:
Permit any host to access the managed VLAN IP address of 169.254.100.100 through a
Telnet or HTTP connection:
Telnet or HTTP connection:
(Netgear Switch) (Config)#ip access-list acl_for_cpu
(Netgear Switch) (Config-ipv4-acl)#permit tcp any 169.254.100.100 0.0.0.0 eq telnet
(Netgear Switch) (Config-ipv4-acl)#deny tcp any any eq http
(Netgear Switch) (Config-ipv4-acl)#permit tcp any 169.254.100.100 0.0.0.0 eq http
(Netgear Switch) (Config-ipv4-acl)#deny tcp any any eq http
(Netgear Switch) (Config-ipv4-acl)#deny every
(Netgear Switch) (Config-ipv4-acl)#exit
(Netgear Switch) (Config)#ip access-group acl_for_cpu control-plane