华为交换机配置（三层交换机配置）

其他端口按需依次设置。

user-interface vty 0 4

authentication-mode aaa

protocol inbound telnet

protocol inbound telnet

interface Vlanif100

telnet server port 33899

华为5720交换机配置流程：

rule 999 deny

telnet server acl 2000

aaa

qos lr inbound cir 102400 cbs 102400

authentication-mode aaa

rule 2 permit source X.X.X.X 0

文章以X.X.X.X代替IP地址，以s5720为例

local-user weiziidc privilege level 15

acl 2000 inbound

port trunk allow-pass vlan 100 to 101

ip address X.X.X.X 255.255.255.0

sys 提高权限

local-user weiziidc password irreversible-cipher +密码

qos lr outbound cir 102400 cbs 102400

rule 5 permit source X.X.X.X 0

telnet server enable

rule 4 permit source X.X.X.X 0

port default vlan 100

interface XGigabitEthernet0/0/1

interface GigabitEthernet0/0/1

local-user weiziidc service-type telnet

port link-type trunk

user-interface vty 16 20

rule 3 permit source X.X.X.X 0

acl number 2000

...

新建vlan，进入vlan管理，配置IP：

进入aaa视图，新建账号，设置密码及权限等级、服务协议

vlan 100

acl 2000 inbound

ip route-static 0.0.0.0 0.0.0.0 下一跳

step 1

rule 1 permit source X.X.X.X 0