R3721-F3210-F3171-HP High-End Firewalls Access Control Configuration Guide-6PW101

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module

221

222

223

224

225

226

227

228

229

230

221

Network requirements

As shown in Figure 161, configure Firewall to perform local authentication and authorization for Telnet

users.

Figure 161 Network diagram

Configuration procedure

1. Configure Firewall

# Configure the IP address of interface GigabitEthernet 0/1, through which the Telnet user

accesses Firewall.

<Firewall> system-view

[Firewall] interface GigabitEthernet 0/1

[Firewall-GigabitEthernet0/1] ip address 192.168.1.70 255.255.255.0

[Firewall-GigabitEthernet0/1] quit

# Enable the Telnet server on Firewall.

[Firewall] telnet server enable

# Configure Firewall to use AAA for Telnet users.

[Firewall] user-interface vty 0 4

[Firewall-ui-vty0-4] authentication-mode scheme

[Firewall-ui-vty0-4] quit

# Create local user named telnet.

[Firewall] local-user telnet

[Firewall-luser-telnet] service-type telnet

[Firewall-luser-telnet] password simple aabbcc

[Firewall-luser-telnet] quit

# Configure the AAA methods for the ISP domain as local authentication and authorization.

[Firewall] domain system

[Firewall-isp-system] authentication login local

[Firewall-isp-system] authorization login local

[Firewall-isp-system] quit

2. Verify the configuration

A Telnet user can access the user interface of Firewall by using username telnet@system and

correct password.

# Use the display connection command to view the connection information on Firewall.

[Firewall] display connection

Index=1 ,Username=telnet@system

IP=192.168.1.58

IPv6=N/A

Total 1 connection(s) matched.