Technical data

ManualsBrandsBrocade Communications Systems ManualsHome Theater ServerServerIron ADX 12.4.00

111

112

113

114

115

116

117

118

119

120

98 ServerIron ADX Administration Guide

53-1002434-01

Restricting remote access to management functions

If more than one gateway has the lowest metric, the software uses the gateway that appears first in

the running-config.

NOTE

If you have already configured a default gateway globally and you do not configure a gateway in the

VLAN, the software uses the globally configured gateway and gives the gateway a metric value of 1.

To configure a designated management VLAN, enter commands such as the following.

ServerIronADX(config)# vlan 10 by port

ServerIronADX(config-vlan-10)# untag ethernet 1/1 to 1/4

ServerIronADX(config-vlan-10)# management-vlan

ServerIronADX(config-vlan-10)# default-gateway 10.10.10.1 1

ServerIronADX(config-vlan-10)# default-gateway 20.20.20.1 2

These commands configure port-based VLAN 10 to consist of ports 1/1 – 1/4 and to be the

designated management VLAN. The management VLAN command is not supported on Layer 2

code. The last two commands configure default gateways for the VLAN. Since the 10.10.10.1

gateway has a lower metric, the software uses this gateway. The other gateway remains in the

configuration but is not used. You can use the other one by changing the metrics so that the

20.20.20.1 gateway has the lower metric.

Syntax: [no] management-vlan

Syntax: [no] default-gateway <ip-addr> <metric>

The <ip-addr> parameters specify the IP address of the gateway router.

The <metric> parameter specifies the metric (cost) of the gateway. You can specify a value from 1

– 5. There is no default. The software uses the gateway with the lowest metric.

Disabling specific access methods

You can specifically disable the following access methods:

• Telnet access

• Web management access

NOTE

If you disable Telnet access, you will not be able to access the CLI except through a serial connection

to the management module. If you disable SNMP access, you will not be able to use IronView or

third-party SNMP management applications.

Disabling Telnet access

Telnet access is enabled by default. You can use a Telnet client to access the CLI on the device

over the network. If you do not plan to use the CLI over the network and want to disable Telnet

access to prevent others from establishing CLI sessions with the device, enter the following

command.

ServerIronADX(config)# no telnet-server

To re-enable Telnet operation, enter the following command.

ServerIronADX(config)# telnet-server

Syntax: [no] telnet-server