beautypg.com

Defining the telnet idle time, Restricting snmp access to a specific ip address – Brocade Multi-Service IronWare Security Configuration Guide (Supporting R05.6.00) User Manual

Page 29

background image

Multi-Service IronWare Security Configuration Guide

11

53-1003035-02

Restricting remote access to management functions

1

Restricting Web management access to a specific IP address

NOTE

The Web Management Interface is only supported on the Brocade NetIron XMR and Brocade MLX
series devices.

To allow Web management access to the Brocade device only to the host with IP address
10.157.22.26, enter the following command.

Brocade(config)# web client 10.157.22.26

Syntax: [no] web client ip-addr

Restricting SNMP access to a specific IP address

To allow SNMP access (which includes Brocade Network Advisor) to the Brocade device only to the
host with IP address 10.157.22.14, enter the following command.

Brocade(config)# snmp-client 10.157.22.14

Syntax: [no] snmp-client ip-addr

Restricting all remote management access to a specific IP address

NOTE

The Web Management Interface is only supported on the Brocade NetIron XMR and Brocade MLX
series devices.

To allow Telnet, SSH, Web, and SNMP management access to the Brocade device only to the host
with IP address 10.157.22.69, you can enter three separate commands (one for each access type)
or you can enter the following command.

Brocade(config)# all-client 10.157.22.69

Syntax: [no] all-client ip-addr

Defining the Telnet idle time

You can define how many minutes a Telnet session can remain idle before it is timed out. An idle
Telnet session is a session that is still sending TCP ACKs in response to keepalive messages from
the device, but is not being used to send data.

To configure the idle time for a Telnet session, use the following command.

Brocade(config)# telnet timeout 120

Syntax: [no] telnet timeout 0 – 240

Possible values: 0 – 240 minutes

Default value: 0 minutes (no timeout)

NOTE

The standard for the idle-timeout RADIUS attribute is for it to be implemented in seconds as opposed
to the minutes that the Brocade device uses. If this attribute is used for setting idle time instead of
this configuration, the value from the idle-timeout RADIUS attribute will be converted from seconds
to minutes and truncated to the nearest minute.

See also other documents in the category Brocade Computer Accessories: