华为OLT设备MA5606T,MA5608T限制访问:
1 本机管理地址为 172.17.123.34,管理地址所在vlan128
2 允许telnet访问该设备的地址段:192.168.0.0 0.0.255.255,172.17.96.0 0.0.31.255
3 配置命令:
config#
acl 3000
rule permit tcp source 192.168.0.0 0.0.255.255 destination 172.17.123.34 0
rule permit tcp source 172.17.96.0 0.0.31.255 destination 172.17.123.34 0
rule deny tcp source any destination 172.17.123.34 0
quit
firewall enable
firewall default permit
interface vlanif 128
firewall packet-filter 3000 inbound
quit
sav
4 配置查看:
display current-configuration | begin firewall