Comware

 View Only
last person joined: 3 days ago 

Back to discussions
Expand all | Collapse all

Management ACL for HPE 5510

This thread has been viewed 0 times

  • 1.  Management ACL for HPE 5510

    Posted Oct 26, 2019 03:30 AM

    Hi, dear colleagues!

    I have to restrict access to HTTPS and SSH to the HPE 5510. I need allow some net and a few hosts and deny all other.

    What's the rightest way to do it?



  • 2.  RE: Management ACL for HPE 5510

    EMPLOYEE
    Posted Oct 30, 2019 06:37 AM

    Hi

     

    Kindly share more details related to device image etc.

    Let me check for the ACL if I can help you with any link.



  • 3.  RE: Management ACL for HPE 5510

    Posted Dec 05, 2019 02:43 AM

    Hi,

    Best way is to assign an ACL to the https and ssh services, if the rules for each service is the same, you can use the same ACL.

    Example of ACL:

     

    acl number 2010 name Management-ACCESS
 rule 10 permit source 10.11.0.12 0 
 rule 10 comment allow single host. 
 rule 20 permit source 10.10.0.1 0.0.0.255
 rule 20 comment allow management network
 rule 10000 deny source any logging
 rule 10000 comment log any attempts outside allowed net

     


    and then apply the ACL to https and ssh services.

     

    ssh server acl 2010
ip https acl 2010

     

     

    Regards