Restricting remote access to management functions – Brocade Virtual ADX Administration Guide (Supporting ADX v03.1.00) User Manual
Page 70
58
Brocade Virtual ADX Administration Guide
53-1003249-01
Restricting remote access to management functions
2
Restricting remote access to management functions
You can restrict access to management functions from remote sources, including Telnet, the Web
Management Interface, and SNMP. The following methods for restricting remote access are
supported:
•
Allowing remote access only from specific IP addresses
•
Allowing remote access only to clients connected to a specific VLAN
•
Specifically disabling Telnet or Web Management Interface access to the device
The following sections describe how to restrict remote access to a Brocade Virtual ADX using these
methods.
Web management
access
SNMP read or read-write
community strings
Allow Web management access only from
specific IP addresses
Allow Web management access only to
clients connected to a specific VLAN
Disable Web management access
Set up local user accounts
Establish SNMP read or read-write
community strings for SNMP versions 1
and 2
Establishing user groups for SNMP
version 3
Configure TACACS or TACACS+ security
Configure RADIUS security
SNMP access
SNMP read or read-write
community strings and the
password to the Super
User privilege level
NOTE: SNMP read or
read-write
community strings
are always
required for SNMP
access to the
device.
Allow SNMP access only from specific IP
addresses
Allow SNMP access only to clients
connected to a specific VLAN
Establish passwords to management
levels of the CLI
Set up local user accounts
Establish SNMP read or read-write
community strings
TFTP access
Not secured
Allow TFTP access only to clients
connected to a specific VLAN
TABLE 5
Ways to secure management access to Brocade Virtual ADX devices (Continued)
Access method
How the access method is
secured by default
Ways to secure the access method
See page