MAGNUM 6K SWITCHES, MNS-6K USER GUIDE
deny – deny specified services for specified IP addresses – IP addresses can be individual
stations, a group of stations or subnets. The range is determined by the IP address and
netmask settings
remove – eliminate specified entry from the authorized manager list
removeall – remove all authorized managers
service – the services allowed or denied are telnet, web and SNMP
It is assumed here that the user is familiar with IP addressing schemes (e.g.
Class A, B, C etc.), subnet masking and masking issues such as how many
stations are allowed for a given subnet mask.
In the examples – any computer on 192.168.5.0 network is allowed (note how the subnet
mask is used to indicate that). Also a specific station with IP address 192.168.15.25 is
allowed (again note how the subnet mask is used to allow only one specific station in the
network.) Older station with IP address 192.168.15.15 is removed.
Magnum6K25# access
Magnum6K25(access)## allow ip=192.168.5.0 mask=255.255.255.0 service=telnet
Service(s) allowed for specified address
Magnum6K25(access)## allow ip=192.168.15.25 mask=255.255.255.255 service=telnet
Service(s) allowed for specified address
Magnum6K25(access)## remove ip=192.168.15.15 mask=255.255.255.255
Access entry removed
Magnum6K25(access)## exit
Magnum6K25# show ip-access
==========================================================================
IP Address | Mask | Telnet | Web | SNMP |
==========================================================================
192.168.5.0 255.255.255.0 ALLOWED DENIED DENIED
192.168.15.25 255.255.255.255 ALLOWED DENIED DENIED
FIGURE 67 – Steps to allow deny or remove specific services
List of commands in this chapter
Syntax set password – set or change password
103