Defining authorized management stations, Overview of ip mask operation, Defining authorized management stations -22 – HP 8000M User Manual

Page 98: Overview of ip mask operation -22

Advertising
background image

6-22

Configuring the Switch
Enhancing Security By Configuring Authorized IP Managers

C

o

n

fig

u

rin

g

th

e

Sw

itc

h

Defining Authorized Management Stations

Authorizing Single Stations:

The table entry authorizes a single man-

agement station to have IP access to the switch. To use this method, just
enter the IP address of an authorized management station in the Autho-
rized Manager IP column, and leave the IP Mask set to

255.255.255.255

. This

is the easiest way to use the Authorized Managers feature. (For more on
this topic, see “Configuring One Station Per Authorized Manager IP Entry”
on page 6-25.)

Authorizing Multiple Stations:

The table entry authorizes a defined

group of stations to access the switch. This is useful if you want to easily
authorize several stations to have access to the switch without having to
type in an entry for every station. All stations in the group defined by the
one Authorized Manager IP table entry and its associated IP mask will
have the same access level—Manager or Operator. (For more on this
topic, see “Configuring Multiple Stations Per Authorized Manager IP
Entry” on page 6-25.)

To configure the switch for authorized manager access, enter the appropriate
Authorized Manager IP

value, specify an IP Mask, and select either

Manager

or

Operator

for the Access Level. The IP Mask determines how the Authorized

Manager IP value is used to define authorized IP addresses for management
station access.

Overview of IP Mask Operation

The default IP Mask is 255.255.255.255 and allows switch access only to a
station having an IP address that is identical to the Authorized Manager IP
parameter value. (“255” in an octet of the mask means that only the exact value
in the corresponding octet of the Authorized Manager IP parameter is allowed
in the IP address of an authorized management station.) However, you can
alter the mask and the Authorized Manager IP parameter to specify ranges of
authorized IP addresses. For example, a mask of

255.255.255.

0

and any value for

the Authorized Manager IP parameter allows a range of 0 through 255 in the
4th octet of the authorized IP address, which enables a block of up to 256 IP
addresses for IP management access. A mask of

255.255.255.25

2

uses the 4th octet

of a given Authorized Manager IP address to authorize four IP addresses for
management station access. The details on how to use IP masks are provided
under “Building IP Masks” on page 6-24.

N o t e

The IP Mask is a method for recognizing whether a given IP address is
authorized for management access to the switch. This mask serves a different
purpose than IP subnet masks and is applied in a different manner.

Advertising
Popular Brands
Popular manuals