Telnet packets – Brocade BigIron RX Series Configuration Guide User Manual

Page 264

Advertising
background image

186

BigIron RX Series Configuration Guide

53-1002484-04

Specifying a single source interface for Telnet, TACACS, TACACS+, or RADIUS packets

7

Specifying a single source interface for Telnet, TACACS,
TACACS+, or RADIUS packets

When the device originates a Telnet, TACACS, TACACS+, or RADIUS packet, the source address of
the packet is the lowest-numbered IP address on the interface that sends the packet. You can
configure the device to always use the lowest-numbered IP address on a specific interface as the
source addresses for these types of packets. When you configure the device to use a single source
interface for all Telnet, TACACS, TACACS+, or RADIUS packets, the device uses the same IP address
as the source for all packets of the specified type, regardless of the ports that actually sends the
packets.

Identifying a single source IP address for Telnet, TACACS, TACACS+, or RADIUS packets provides the
following benefits:

If your Telnet, TACACS, TACACS+, or RADIUS server is configured to accept packets only from
specific IP addresses, you can use this feature to simplify configuration of the server by
configuring the Brocade device to always send the packets from the same link or source
address.

If you specify a loopback interface as the single source for Telnet, TACACS, TACACS+, or RADIUS
packets, servers can receive the packets regardless of the states of individual links. Thus, if a
link to the server becomes unavailable but the client or server can be reached through another
link, the client or server still receives the packets, and the packets still have the source IP
address of the loopback interface.

The software contains separate CLI commands for specifying the source interface for Telnet,
TACACS, TACACS+, or RADIUS packets. You can configure a source interface for one or more of
these types of packets separately.

To specify an Ethernet or a loopback or virtual interface as the source for all TACACS and TACACS+
packets from the device, use the following CLI method. The software uses the lowest-numbered IP
address configured on the port or interface as the source IP address for TACACS, TACACS+ packets
originated by the device.

The following sections show the syntax for specifying a single source IP address for Telnet, TACACS,
TACACS+, and RADIUS packets.

Telnet packets

To specify the lowest-numbered IP address configured on a virtual interface as the device’s source
for all Telnet packets, enter commands such as the following.

BigIron RX(config)# int loopback 2

BigIron RX(config-lbif-2)# ip address 10.0.0.2/24

BigIron RX(config-lbif-2)# exit

BigIron RX(config)# ip telnet source-interface loopback 2

The commands configure loopback interface 2, assign IP address 10.0.0.2/24 to the interface,
then designate the interface as the source for all Telnet packets from the device.

Syntax: ip telnet source-interface ethernet <slot/port> | loopback <num> | ve <num>

The <num> parameter is a loopback interface or virtual interface number.

The following commands configure an IP interface on an Ethernet port and designate the address
port as the source for all Telnet packets from the device.

Advertising
Popular Brands
Popular manuals