Restricting snmp access to a specific ip address – Brocade BigIron RX Series Configuration Guide User Manual

Page 138

Advertising
background image

60

BigIron RX Series Configuration Guide

53-1002484-04

Restricting remote access to management functions

3

Restricting Web Management access to a specific IP address

To allow Web Management access to the device only to the host with IP address 209.157.22.26,
enter the following command.

BigIron RX(config)# web client 209.157.22.26

Syntax: [no] web client <ip-addr> | ipv6 <ipv6-addr>

Restricting SNMP access to a specific IP address

To allow SNMP access (which includes Brocade Network Advisor) to the device only to the host with
IP address 209.157.22.14, enter the following command.

BigIron RX(config)# snmp-client 209.157.22.14

Syntax: [no] snmp-client <ip-addr> | ipv6 <ipv6-addr>

Restricting all remote management access to a specific IP address

To allow Telnet, Web, and SNMP management access to the device only to the host with IP address
209.157.22.69, you can enter three separate commands (one for each access type) or you can
enter the following command.

BigIron RX(config)# all-client 209.157.22.69

Syntax: [no] all-client <ip-addr> | ipv6 <ipv6-addr>

Specifying the maximum number of login attempts for
Telnet access

If you are connecting to the device using Telnet, the device prompts you for a username and
password. By default, you have up to 3 chances to enter a correct username and password. If you
do not enter a correct username or password after 3 attempts, the device disconnects the Telnet
session.

You can specify the number of attempts a Telnet user has to enter a correct username and
password before the device disconnects the Telnet session. For example, to allow a Telnet user up
to 3 chances to enter a correct username and password, enter the following command:

BigIron RX(config)# telnet login-retries 5

Syntax: [no] telnet login-retries <number>

You can specify from 0 – 3 attempts. The default is 3 attempts.

Restricting remote access to the device to
specific VLAN IDs

You can restrict management access to a device to ports within a specific port-based VLAN.
VLAN-based access control applies to the following access methods:

Telnet access

Web management access

SNMP access

Advertising
Popular Brands
Popular manuals