No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search


To have a better experience, please upgrade your IE browser.


Fat AP and Cloud AP V200R010C00 Command Reference

Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
acl (user interface view)

acl (user interface view)


The acl command uses an ACL to restrict login rights of users on a terminal.

The undo acl command cancels the configuration.

By default, login rights are not restricted.


acl acl-number { inbound | outbound }

undo acl { inbound | outbound }


Parameter Description Value

Specifies the number of an ACL.

The value is an integer ranging from 2000 to 3999.
  • 2000-2999: restricts the source address using the basic ACL.
  • 3000-3999: restricts the source and destination addresses using the advanced ACL.

Restricts users with an address or within an address segment to log in to the device.


Restricts users that have logged in to the device from logging in to other devices.



User interface view

Default Level

3: Management level

Usage Guidelines

Usage Scenario

This command restricts the login rights of a user interface based on the source IP address, destination IP address, source port, or destination port. You can use this command to permit or deny access to a destination or from a source.


Before running this command, run the acl (system view) in the system view and run the rule (basic ACL view) or rule (advanced ACL view) command to configure an ACL.

If no rule is configured, login rights on the user interface are not restricted when the acl command is executed.


After the configurations of the ACL take effect, all users on the user interface are restricted by the ACL.

Only one ACL (an inbound or outbound ACL) can be configured on a user interface.


# Restrict the Telnet login rights on user interface VTY 0.

<Huawei> system-view
[Huawei] acl 3001
[Huawei-acl-adv-3001] rule deny tcp source any destination-port eq telnet
[Huawei-acl-adv-3001] quit
[Huawei] user-interface vty 0
[Huawei-ui-vty0] acl 3001 outbound

# Remove the restriction on the Telnet login rights on user interface VTY 0.

<Huawei> system-view
[Huawei] user-interface vty 0
[Huawei-ui-vty0] undo acl outbound
Related Topics
Updated: 2019-11-21

Document ID: EDOC1100064352

Views: 203665

Downloads: 122

Average rating:
This Document Applies to these Products
Related Version
Related Documents
Previous Next