HP StorageWorks Secure Fabric OS 5.0.0 User Guide (AA-RW1UA-TE, May 2005)
71Secure Fabric OS 5.0.0 user guide
The possible Telnet policy states are shown in Table 5.
To create a Telnet policy:
1. From a sectelnet or Secure Shell session, log in to the primary FCS switch as admin.
2. Type secPolicyCreate “policy_name”, “member;...;member”.
Policy_name is TELNET_POLICY. Member is one or more IP addresses in dot-decimal
notation. “0” can be entered in an octet to indicate that any number can be matched in
that octet.
3. To save or activate the new policy, enter either the secPolicySave or the
secPolicyActivate command.
If neither of these commands is entered, the changes are lost when the session is logged
out. For more information about these commands, refer to ”Saving changes to Secure
Fabric OS policies” on page 84 and ”Activating changes to Secure Fabric OS policies”
on page 84.
For example, to create a Telnet policy to allow anyone on network 192.168.5.0 (where 0
can be any number) to access the fabric through a sectelnet or Secure Shell session:
HTTP policy
The HTTP policy can be used to specify which workstations can use HTTP to access the fabric.
This is useful for applications that use Internet browsers, such as Web Tools.
The policy is named HTTP_POLICY and contains a list of IP addresses for devices and
workstations that are allowed to establish HTTP connections to the switches in the fabric.
Table 5 Telnet policy states
Policy State Description
No policy Any host can connect by sectelnet or SSH to the fabric.
Policy with no
entries
No host can connect by sectelnet or SSH to the fabric.
Policy with entries Only specified hosts can connect by sectelnet or SSH to the
fabric.
primaryfcs:admin> secpolicycreate "TELNET_POLICY", "192.168.5.0"
TELNET_POLICY has been created.