Comware Based
1824976 Members
3750 Online
109678 Solutions
New Discussion

5120 and SSH IP restrictions

 
marconirovereto
Occasional Contributor

5120 and SSH IP restrictions

Hi everybody!
I'm new to the community. I'm italian, so please be patient for my poor english...

I'm configuring two HP 5120 switches, connected by a CX4 module (IRF).

Everything is working fine.
My problem is that, I have more or less 20 vlans, with the relatives vlan interfaces, to have Layer3 routing.

eg:

vlan 25
 name Subnet25
 description Prese terzo piano
#
vlan 26
 name Subnet26
 description Tecnici

interface Vlan-interface25
 ip address 192.168.25.254 255.255.255.0
 dhcp select relay
 dhcp relay server-select 1

interface Vlan-interface26
 ip address 192.168.26.254 255.255.255.0
 dhcp select relay
 dhcp relay server-select 1


IP Routing and dhcp relay are working fine.
Now I need to enable SSH access to the switch, so I used:

local-user admin
 password cipher <long_cipher_string>
 authorization-attribute level 3
 service-type ssh

ssh user admin service-type all authentication-type password

 

My question is:
is there any way to restrict ssh access to certain clients' IPs? (eg 192.168.29.0/24 on VLAN 29?)

Thanks!
Nick

1 REPLY 1
Apachez-
Trusted Contributor

Re: 5120 and SSH IP restrictions