Table of Contents
Advertisement
Foundry Switch and Router Installation and Configuration Guide
•
If you specify a loopback interface as the single source for Telnet, TACACS/TACACS+, or RADIUS packets,
servers can receive the packets regardless of the states of individual links. Thus, if a link to the server
becomes unavailable but the client or server can be reached through another link, the client or server still
receives the packets, and the packets still have the source IP address of the loopback interface.
The software contains separate CLI commands for specifying the source interface for Telnet, TACACS/TACACS+,
or RADIUS packets. You can configure a source interface for one or more of these types of packets separately.
To specify an Ethernet or POS port or a loopback or virtual interface as the source for all TACACS/TACACS+
packets from the device, use the following CLI method. The software uses the lowest-numbered IP address
configured on the port or interface as the source IP address for TACACS/TACACS+ packets originated by the
device.
USING THE CLI
The following sections show the syntax for specifying a single source IP address for Telnet, TACACS/TACACS+,
and RADIUS packets.
Telnet Packets
To specify the lowest-numbered IP address configured on a virtual interface as the device's source for all Telnet
packets, enter commands such as the following:
BigIron(config)# int loopback 2
BigIron(config-lbif-2)# ip address 10.0.0.2/24
BigIron(config-lbif-2)# exit
BigIron(config)# ip telnet source-interface loopback 2
The commands in this example configure loopback interface 2, assign IP address 10.0.0.2/24 to the interface,
then designate the interface as the source for all Telnet packets from the Layer 3 Switch.
Syntax: ip telnet source-interface ethernet <portnum> | pos <portnum> | loopback <num> | ve <num>
The <num> parameter is a loopback interface or virtual interface number. If you specify an Ethernet or POS port,
the <portnum> is the port's number (including the slot number, if you are configuring a chassis device).
The following commands configure an IP interface on an Ethernet port and designate the address port as the
source for all Telnet packets from the Layer 3 Switch.
BigIron(config)# interface ethernet 1/4
BigIron(config-if-1/4)# ip address 209.157.22.110/24
BigIron(config-if-1/4)# exit
BigIron(config)# ip telnet source-interface ethernet 1/4
TACACS/TACACS+ Packets
To specify the lowest-numbered IP address configured on a virtual interface as the device's source for all
TACACS/TACACS+ packets, enter commands such as the following:
BigIron(config)# int ve 1
BigIron(config-vif-1)# ip address 10.0.0.3/24
BigIron(config-vif-1)# exit
BigIron(config)# ip tacacs source-interface ve 1
The commands in this example configure virtual interface 1, assign IP address 10.0.0.3/24 to the interface, then
designate the interface as the source for all TACACS/TACACS+ packets from the Layer 3 Switch.
Syntax: ip tacacs source-interface ethernet <portnum> | pos <portnum> | loopback <num> | ve <num>
The <num> parameter is a loopback interface or virtual interface number. If you specify an Ethernet or POS port,
the <portnum> is the port's number (including the slot number, if you are configuring a chassis device).
RADIUS Packets
To specify the lowest-numbered IP address configured on a virtual interface as the device's source for all RADIUS
packets, enter commands such as the following:
BigIron(config)# int ve 1
BigIron(config-vif-1)# ip address 10.0.0.3/24
15 - 28
December 2000
- Quick Links:
- Configuring Ip Addresses
Hide quick links:
Advertisement
Chapters
Table of Contents
