5120 and SSH IP restrictions

marconirovereto · ‎12-13-2014

Hi everybody!
I'm new to the community. I'm italian, so please be patient for my poor english...

I'm configuring two HP 5120 switches, connected by a CX4 module (IRF).

Everything is working fine.
My problem is that, I have more or less 20 vlans, with the relatives vlan interfaces, to have Layer3 routing.

eg:

vlan 25
 name Subnet25
 description Prese terzo piano
#
vlan 26
 name Subnet26
 description Tecnici

interface Vlan-interface25
 ip address 192.168.25.254 255.255.255.0 
 dhcp select relay
 dhcp relay server-select 1

interface Vlan-interface26
 ip address 192.168.26.254 255.255.255.0 
 dhcp select relay
 dhcp relay server-select 1

IP Routing and dhcp relay are working fine.
Now I need to enable SSH access to the switch, so I used:

local-user admin
 password cipher <long_cipher_string>
 authorization-attribute level 3
 service-type ssh

ssh user admin service-type all authentication-type password

My question is:
is there any way to restrict ssh access to certain clients' IPs? (eg 192.168.29.0/24 on VLAN 29?)

Thanks!
Nick

Apachez- · ‎12-13-2014

Yes, look here for a solution http://h30499.www3.hp.com/t5/Comware-Based/Securing-SSH-connections/m-p/6586274/highlight/true#M5778

Categories

Company

Local Language

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Discussions

Forums

Forums

Discussions

Forums

Discussions

Forums

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Community

Resources

Other HPE Sites

Discussions

Forums

Blogs

5120 and SSH IP restrictions

5120 and SSH IP restrictions

Re: 5120 and SSH IP restrictions