1. Manuals
  2. Brands
  3. Alcatel Manuals
  4. Network Router
  5. SpeedTouch 610
  6. Management manual

Remote Speedtouch Tm 610 Telnet Access - Alcatel SpeedTouch 610 Management Manual

Business dsl router remote management 600 series
Hide thumbs Also See for SpeedTouch 610:
Table of Contents

Advertisement

2.3 Remote SpeedTouch
Appropriate firewall
rules
Refinements of the
rules
Application Note Ed. 01
To allow remote access to the SpeedTouch
Telnet session from the WAN to the SpeedTouch
To the sink chain:
[firewall rule]=>
create chain=sink index=2 prot=tcp dstport=telnet action=accept
The rule allows incoming traffic from the WAN to the SpeedTouch
server.
The rule is inserted after the first two rules (index=0 and index=1) as none of the
two rules apply to traffic coming from any WAN interface. However, make sure
(as in the example) to insert the rule before the last rule (which drops all traffic
not blocked by any preceding rule).
If you want to allow remote access to the SpeedTouch
Note
in a Bridged Ethernet Packet Service scenario, you must add the rule with
index=0 (i.e. the added rule becoming the first one) to avoid that the traffic
coming from the WAN Bridge port and destined for the SpeedTouch
Telnet server is dropped.
To the source chain:
[firewall rule]=>
create chain=source index=1 prot=tcp srcport=telnet action=accept
The rule allows outgoing traffic from the SpeedTouch
WAN. It is added after the first rule concerning all traffic towards the LAN as it
has no concern with it, but before the last rule (which drops all traffic not blocked
by any preceding rule).
The added rules will allow any user on the WAN to open a Telnet session to the
TM
SpeedTouch
610 and accessing the CLI after authentication.
However, if needed, the rules can be fine-tuned to allow only traffic coming from/going
to a particular Packet Service interface, or even (additionally) restrict allowed traffic to
a range of IP addresses.
The example below shows the rules to add in case a same management setup as in
"2.2 Remote SpeedTouchTM610 Web Interface Access" on page 8
this setup only remote hosts with an IP address in the range of 192.6.11.1 to
192.6.11.254 with an IP connection to the SpeedTouch
face are allowed to contact the SpeedTouch
[firewall rule]=>
create chain=sink index=2 srcintf=IPoA src=192.6.11.1/24 prot=tcp
dstport=telnet action=accept
[firewall rule]=>
create chain=source index=1 dstintf=IPoA dst=192.6.11.1/24 prot=tcp
srcport=telnet action=accept
For more information on the complete CLI command parameters, see the
TM
SpeedTouch
610 CLI Reference
2 SpeedTouch
TM
610 Telnet Access
TM
610 Command Line Interface (CLI) via a
TM
610, you must add following rules:
TM
TM
610 via the IPoA WAN inter-
TM
610 Telnet server.
Guide.
TM
610 Remote Access
TM
610 Telnet
TM
610 CLI via Telnet
TM
610
610 Telnet server to the
is applied. Again, in
9

Advertisement

Table of Contents
loading

Related Manuals for Alcatel SpeedTouch 610

Related Content for Alcatel SpeedTouch 610

This manual is also suitable for:

Speedtouch 610sSpeedtouch 610vSpeedtouch 610i

Table of Contents