Manualshelf

Reference Guide

ManualsBrandsDell ManualsAccess PlatformsBrocade G620
211212213214215216217218219220
4. Verify the new policy exists by entering the ipFilter --show command.
switch:admin> ipfilter --show
5. Add a rule to the policy, by entering the ipFilter --addrule command.
switch:admin> ipfilter --addrule BlockTelnet -rule 1 -sip any -dp 23 -proto tcp -act deny
ATTENTION
The rule number assigned must precede the default rule number for this protocol. For example, in the defined policy,
the Telnet rule number is 2. Therefore, to effectively block Telnet, the rule number to assign must be 1. If you choose
not to use 1, you must delete the Telnet rule number 2 after adding this rule. Refer to Deleting a rule from an IP Filter
policy on page 241 for more information on deleting IP filter rules.
6. Save the new IP filter policy by entering the ipFilter --save command.
7. Verify the new policy is correct by entering the ipFilter --show command.
8. Activate the new IP filter policy by entering the ipFilter --activate command.
switch:admin> ipfilter --activate BlockTelnet
9. Verify the new policy is active (the default_ipv4 policy should be displayed as defined).
switch:admin> ipfilter --show
Name: default_ipv4, Type: ipv4, State: defined
Rule Source IP Protocol Dest Port Action
1 any tcp 22 permit
2 any tcp 23 permit
3 any tcp 80 permit
4 any tcp 443 permit
5 any udp 161 permit
6 any udp 123 permit
7 any tcp 600 - 1023 permit
8 any udp 600 - 1023 permit
Name: default_ipv6, Type: ipv6, State: active
Rule Source IP Protocol Dest Port Action
1 any tcp 22 permit
2 any tcp 23 permit
3 any tcp 80 permit
4 any tcp 443 permit
5 any udp 161 permit
6 any udp 123 permit
7 any tcp 600 - 1023 permit
8 any udp 600 - 1023 permit
Name: BlockTelnet, Type: ipv4, State: active (modified)
Rule Source IP Protocol Dest Port Action
1 any tcp 23 deny
2 any tcp 22 permit
3 any tcp 80 permit
4 any tcp 443 permit
5 any udp 161 permit
6 any udp 123 permit
7 any tcp 600 - 1023 permit
8 any udp 600 - 1023 permit
Unblocking Telnet
Use the following procedure to unblock Telnet access.
Configuring Protocols
Brocade Fabric OS Administration Guide, 8.0.1
212 53-1004111-02