Login
- Table of Contents
-
- 01-System Management
- 01-Telnet Access Control Configuration Example
- 02-IPv6 Telnet Access Control Configuration Example
- 03-Web Access Control Configuration Example
- 04-User Role Assignment for Local Web Authentication Users Configuration Example
- 05-SSH Local Authentication Configuration Example
- 06-SSH User Remote Password Authentication Configuration Example
- 07-IPv6 SSH User Remote Password Authentication Configuration Example
- 08-Password Control Configuration Example
- Related Documents
-
| Title | Size | Download |
|---|---|---|
| 03-Web Access Control Configuration Example | 129.14 KB |
|
|
|
H3C Access Controllers |
|
Web Access Control |
|
Configuration Example |
Copyright © 2024 New H3C Technologies Co., Ltd. All rights reserved.
No part of this manual may be reproduced or transmitted in any form or by any means without prior written consent of New H3C Technologies Co., Ltd.
Except for the trademarks of New H3C Technologies Co., Ltd., any trademarks that may be mentioned in this document are the property of their respective owners.
The information in this document is subject to change without notice.
Overview
The following information provides an example for configuring Web access control.
Prerequisites
The following information applies to Comware 7-based access controllers. Procedures and information in the examples might be slightly different depending on the software or hardware version of the H3C access controllers.
The configuration examples were created and verified in a lab environment, and all the devices were started with the factory default configuration. When you are working on a live network, make sure you understand the potential impact of every command on your network.
The following information is provided based on the assumption that you have basic knowledge of Web access control.
Example: Configuring Web access control
Network configuration
As shown in Figure 1, configure the AC to permit only HTTP and HTTPS packets sourced from 192.168.100.22.
Prerequisites
Make sure the network connections are available.
Procedures
Configuring an ACL
1. Click the System View tab at the bottom of the page.
2. From the navigation pane, select System > Resource.
3. On the IPv4 ACL tab, click the Add button
to create an IPv4 ACL:
¡ Select Basic.
¡ Enter ACL number 2000.
¡ Click Apply.
Figure 2 Configuring an ACL
4. Configure an ACL rule:
¡ Select the Source IP address/wildcard mask match criterion, and enter 192.168.100.22 as the IP address and 0.0.0.0 as the wildcard mask.
¡ Clear the Continue to add next rule option.
¡ Click Apply.
Figure 3 Configuring an ACL rule
Applying the ACL to Web services
1. Click the System View tab at the bottom of the page.
2. From the navigation pane, select Network Settings > Management Protocols.
3. Apply the ACL to HTTP and HTTPS services:
¡ Click
the light bulb icon next to Access
ACL 
in
the HTTP area.
¡ Select ACL 2000.
¡ Click Apply.
Figure 4 Applying the ACL to the HTTP service
¡ Click
the light bulb icon next to Access
ACL 
in
the HTTPS area.
¡ Select ACL 2000.
¡ Click Apply.
Figure 5 Applying the ACL to the HTTPS service
Verifying the configuration
1. On Host A, launch the Web browser and enter http://192.168.100.1 in the address bar. You can log in to the Web interface after entering the correct username and password. (Details not shown.)
2. On Host B, launch the Web browser and enter http://192.168.100.1 in the address bar. You cannot log in to the Web interface after entering the correct username and password. (Details not shown.)
Related documentation
H3C Access Controllers Web-Based Configuration Guide
