8-6Network diagramFigure 8-1 Network diagram for controlling Telnet users using ACLsSwitch10.110.100.46Host AIP networkHost B10.110.100.52Configuration procedure# Define a basic ACL. system-view[Sysname] acl number 2000[Sysname-acl-basic-2000] rule 1 permit source 10.110.100.52 0[Sysname-acl-basic-2000] quit# Apply the ACL.[Sysname] user-interface vty 0 4[Sysname-ui-vty0-4] acl 2000 inboundControlling Network Management Users by Source IP AddressesYou can manage an S5600 Ethernet switch through network management software. Networkmanagement users can access switches through SNMP.You need to perform the following two operations to control network management users by source IPaddresses.z Defining an ACLz Applying the ACL to control users accessing the switch through SNMPPrerequisitesThe controlling policy against network management users is determined, including the source IPaddresses to be controlled and the controlling actions (permitting or denying).Controlling Network Management Users by Source IP AddressesControlling network management users by source IP addresses is achieved by applying basic ACLs,which are numbered from 2000 to 2999.Follow these steps to control network management users by source IP addresses:To do… Use the command… RemarksEnter system view system-view —