Foundry NetIron M2404C and M2404F Metro Access Switches
Configuring Interfaces (Rev. 03)
Fast Ethernet and Giga Ethernet Port
© 2008 Foundry Networks, Inc.
Page 20 of 57
Setting Management Ports
The
port
management
command, in Global Configuration mode, controls access to device
management on specified ports. The
no
form of this command blocks access to the device
management on specified ports.
Use the
no
port
management
command to restrict device management access to a list of user-
defined ports.
When the management on ports is to be disabled, ensure that the management station will remain
connected to a management-enabled port.
If port management is disabled, the following will be disallowed:
•
Telnet to the device
•
SSH to the device
•
Using the Application software
•
SNMP management
•
SNMP traps and informs
•
Ping to the device
•
TFTP download or upload
•
Outgoing Syslog messages.
By default, management of the device is accessible on all ports.
NOTE
The user can also disable management on a VLAN by the
no
management
command in VLAN Configuration mode. Management traffic on a VLAN is
allowed on a port that is a member of that VLAN only if management is enabled
both on the port and on the VLAN.
Command Syntax
device-name
(config)#
port
management PORT-LIST
device-name
(config)#
no port
management PORT-LIST
Argument Description
PORT-LIST
List of ports, specified by the following options:
•
UU/SS/PP
– (unit, slot and port number, e.g. – 1/1/8) specifying a single port;
•
UU
– (1 or 2-digit unit number) specifying all ports on unit;
•
UU/SS
– (unit and slot number) specifying all ports on slot;
•
A hyphenated range of ports, e.g. - 1/1/1-1/1/6;
•
Several port numbers and/or ranges, separated by commas.
Displaying the Management Ports
The
show port management
command, in Privileged (Enable) mode, displays which ports provide
management access.