• Telnet access
• Web management access
• SNMP access
Note: You cannot restrict remote management access using the Web Management Interface.
Restrict SSH / Telnet / Web / SNMP access to a single host:
Brocade(config)#web client 209.157.22.26
Brocade(config)#ip ssh client 209.157.22.39
Brocade(config)#telnet client 209.157.22.39
Brocade(config)#snmp-client 209.157.22.14
If you would like to restrict access to all of the above methods in ONE command then:
Brocade(config)#all-client 209.157.22.69
To configure the idle time for a Telnet session:
Brocade(config)#telnet timeout 120 (0 - 240 min | 0 is default)
Note: The standard for the idle-timeout RADIUS attribute is for it to be implemented in seconds as opposed to the minutes that the Brocade device uses.
Limiting telnet login attempts:
Brocade(config)# telnet login-retries <#> ( 0 - 5 | 4 is default )
Restricting remote access to the device to specific VLAN's:
VLAN-based access control applies to the following access methods:
• Telnet access
• Web management access
• SNMP access
• TFTP access
Brocade(config)# telnet server enable vlan 10
Brocade(config)# web-management enable vlan 10
Brocade(config)# snmp-server enable vlan 40
Brocade(config)# tftp client enable vlan 40
Telnet / Web / SNMP access is disabled by default and must be enable to access the device remotely:
Brocade(config)# telnet-server
Brocade(config)# web-management
Using the web-management command without the http or https option makes web management available for both. The http option specifies that web management is enabled for HTTP access. The https option specifies that web management is enabled for HTTPS access.
Brocade(config)# snmp-server
To set the telnet password:
Brocade(config)# enable telnet password letmein
No comments:
Post a Comment