Alcatel-Lucent 7450 System Management Manual page 73
Ethernet service switch
Hide thumbs
Also See for 7450:
- Quality of service manual (912 pages) ,
- Manual (816 pages) ,
- Configuration manual (778 pages)
Table of Contents
Advertisement
The following displays a management access filter configuration example:
*A:Dut-C>config>system>security>mgmt-access-filter# info
----------------------------------------------
7450 ESS System Mangement Guide
[no] entry entry-id
[no] action {permit|deny|deny-host-unreachable}
[no] description <description-string>
[no] dst-port port [mask]
[no] log
[no] protocol protocol-id
[no] router router-instance | service-id | service-
name service-name
[no] src-ip {ip-prefix/mask |ip-prefix netmask}
[no] src-port{port-id|cpm|lag lag-id}
mac-filter
default-action {permit|deny}
renum old-entry-number new-entry-number
[no] shutdown
[no] entry entry-id
[no] action deny | permit
[no] description description-string
[no] log
[no] match [frame-type frame-type]
[no] cfm-opcode {lt|gt|eq} pcode | range start
end>
[no] dot1p dot1p-value [dot1p-mask]
[no] dsap dsap-value [dsap-mask]
[no] dst-mac ieee-address [ieee-address-mask]
[no] etype 0x0600..0xffff
[no] snap-oui {zero|non-zero}
[no] snap-pid snap-pid
[no] src-mac ieee-address [ieee-address-mask]
[no] ssap ssap-value [ssap-mask]
[no] svc-id <ervice-id
ip-filter
default-action deny
entry 10
description "Accept SSH from mgmnt subnet"
src-ip 192.168.5.0/26
protocol tcp
dst-port 22 65535
action permit
exit
exit
ipv6-filter
default-action permit
entry 10
src-ip 3FFE::1:1/128
next-header rsvp
log
action deny
exit
Security
Page 73
Advertisement
Table of Contents
