Chapter 2 Enabling Remote Access to the ACE
Configuring Remote Network Management Traffic Services
2-6
Cisco 4700 Series Application Control Engine Appliance Administration Guide
OL-11157-01
–
match-any
—Any one of the match criteria listed in the class map is
satisfied to match the network traffic class in the class map, typically
match commands of different types.
•
map_name
—Specifies the name assigned to the class map. Enter an unquoted
text string with no spaces and a maximum of 64 alphanumeric characters.
The CLI enters the class map management configuration mode. To classify the
remote network management traffic received by the ACE, include one or more of
the
match protocol
commands to configure the match criteria for the class map:
For example, to allow SSH and Telnet access to the ACE from IP address
172.16.10.0, enter:
host1/Admin(config)#
class-map type management match-all
SSH-TELNET_ALLOW_CLASS
host1/Admin(config-cmap-mgmt)#
match protocol ssh source-address
172.16.10.0 255.255.255.254
host1/Admin(config-cmap-mgmt)#
match protocol telnet source-address
172.16.10.0 255.255.255.254
host1/Admin(config-cmap-mgmt)#
exit
host1/Admin(config)#
To remove a Layer 3 and Layer 4 network management class map from the ACE,
enter:
host1/Admin(config)#
no class-map type management match-all
SSH-TELNET_ALLOW_CLASS
Defining a Class Map Description
To provide a brief summary about the Layer 3 and Layer 4 remote management
class map, use the
description
command in class map configuration mode.
The syntax of this command is:
description
text
Use the
text
argument to enter an unquoted text string with a maximum of 240
alphanumeric characters.
For example, to specify a description that the class map is to allow remote Telnet
access, enter:
host1/Admin(config)#
class-map type management TELNET-ALLOW_CLASS
host1/Admin(config-cmap-mgmt)#
description Allow Telnet access to the
ACE