Filter
Top Products
Configuring source IP-based login control over web
users
You can log in to the web management page of the device through HTTP/HTTPS to remotely manage the
devices. By using the ACL, you can control web user access to the device.
Configuration preparation
Before configuration, determine the permitted or denied source IP addresses.
Configuring source IP-based login control over web users
Because basic ACLs match the source IP addresses of packets, you can use basic ACLs to implement
source IP-based login control over web users. Basic ACLs are numbered from 2000 to 2999. For more
information about ACL, see the ACL and QoS Configuration Guide.
Follow these steps to configure source IP-based login control over web users:
To do… Use the command… Remarks
Enter system view system-view —
Create a basic ACL and enter its
view, or enter the view of an
existing basic ACL
acl [ ipv6 ] number acl-number
[ match-order { config | auto } ]
Required
By default, no basic ACL exists.
Create rules for this ACL
rule [ rule-id ] { permit | deny }
[ source { sour-addr sour-wildcard
| any } | time-range time-name |
fragment | logging ]*
Required
Exit the basic ACL view
quit —
Associate the HTTP service with the
ACL
ip http acl acl-number
Associate the HTTPS service with
the ACL
ip https acl acl-number
Required to use one command
Logging off online web users
Follow the step to log off online web users:
To do… Use the command… Remarks
Log off online web users
free web-users { all | user-id
user-id | user-name user-name }
Required
Execute the command in user
interface view.
83