5.
Ethernet Interface Configuration
MN700004 Rev 01
43
show port management
Displays which ports provide management access.
Setting Management Ports
The
port
management
command, in Global Configuration mode, controls access to/from
switch management on specified ports. The
no
form of this command blocks access to the
switch’s management on specified ports for both outgoing and incoming management
packets.
Use the
port
management
command to restrict switch management access to a list of ports
that you specify.
Before applying the
port
management
command, verify that the following condition is met:
You must be able to move your network management station to a switch port assigned to the
same port as the management port.
If port management is disabled, the following will be disallowed:
•
Telnet to the switch
•
SSH to the switch
•
SNMP management
•
SNMP traps and informs
•
Ping to the switch
•
TFTP download or upload
•
Outgoing Syslog messages
By default, management of the switch is accessible through all ports. Also, all outgoing
management packets are with highest priority (7) when port is tagged.
NOTE
You can also disable management on a VLAN by the management command in VLAN
Configuration mode. Management traffic on a VLAN is allowed on a port that is a member
of that VLAN only if management is enabled both on the port and on the VLAN.
Command Syntax
device-name
(config)#
port
management
PORT-LIST
device-name
(config)#
no port management
PORT-LIST
Argument Description
PORT-LIST
List of ports, specified by the following options:
UU/SS/PP – (unit, slot and port number, e.g. – 1/1/8) specifying a single port;
UU – (1 or 2-digit unit number) specifying all ports on unit;
UU/SS – (unit and slot number) specifying all ports on slot;
A hyphenated range of ports, e.g. - 1/1/9-1/1/16 or 1/2-1/3;
Several port numbers and/or ranges, separated by commas, e.g. – 1/1, 1/2/3-1/2/6,
1/2/8.