beautypg.com

Restricting telnet access to a specific vlan, Restricting snmp access to a specific vlan, Restricting tftp access to a specific vlan – Brocade Virtual ADX Administration Guide (Supporting ADX v03.1.00) User Manual

Page 72

background image

60

Brocade Virtual ADX Administration Guide

53-1003249-01

Restricting remote access to management functions

2

Syntax: [no] all-client ip-addr

Restricting remote access to the device to specific VLAN IDs

You can restrict management access to a Brocade Virtual ADX to ports within a specific port-based
VLAN. VLAN-based access control applies to the following access methods:

Telnet access

Web management access

SNMP access

TFTP access

By default, access is allowed for all the methods listed above on all ports. Once you configure
security for a given access method based on VLAN ID, access to the device using that method is
restricted to only the ports within the specified VLAN.

Restricting Telnet access to a specific VLAN

To allow Telnet access only to clients in a specific VLAN, enter a command such as the following.

Virtual ADX(config)#telnet server enable vlan 10

The command in this example configures the device to allow Telnet management access only to
clients connected to ports within port-based VLAN 10. Clients connected to ports that are not in
VLAN 10 are denied management access.

Syntax: [no] telnet server enable vlan vlan-id

Restricting Web management access to a specific VLAN

To allow Web management access only to clients in a specific VLAN, enter a command such as the
following.

Virtual ADX(config)#web-management enable vlan 10

The command in this example configures the device to allow Web management access only to
clients connected to ports within port-based VLAN 10. Clients connected to ports that are not in
VLAN 10 are denied management access.

Syntax: [no] web-management enable vlan vlan-id

Restricting SNMP access to a specific VLAN

To allow SNMP access only to clients in a specific VLAN, enter a command such as the following.

Virtual ADX(config)#snmp-server enable vlan 40

The command in this example configures the device to allow SNMP access only to clients
connected to ports within port-based VLAN 40. Clients connected to ports that are not in VLAN 40
are denied access.

Syntax: [no] snmp-server enable vlan vlan-id

Restricting TFTP access to a specific VLAN

To allow TFTP access only to clients in a specific VLAN, enter a command such as the following.

See also other documents in the category Brocade Computer Accessories: