< Home

ssh server acl

Function

The ssh server acl command configures the ACL to control the access of clients for Secure Telecommunication Network Protocol (STelnet), Secure Shell File Transfer Protocol (SFTP) and SNetconf with IPv6 protocol.

The undo ssh server acl command cancels the ACL configuration.

By default, no ACL is configured.

Format

ssh [ ipv6 ] server acl acl-number

undo ssh [ ipv6 ] server acl

Parameters

Parameter Description Value
acl-number Specifies the ACL number. It is an integer data type. The value range is from 2000 to 3999.

Views

System view

Default Level

3: Management level

Usage Guidelines

If a FW serves as
  • STelnet client, you can configure the ACL on the FW to control the log in of the local device to the STelnet server through STelnet.
  • SFTP client, you can configure the ACL on the FW to control the log in of the local device to the SFTP server through SFTP.
User can restrict the source address by using basic ACL and by using advanced ACL the user can restrict the source and destination address.

Example

# Set ACL rule 2000 to ssh server.

<sysname> system-view
[sysname] ssh server acl 2000
Parent Topic: Telnet and SSH Configuration Commands
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >