Comware Based
cancel
Showing results for 
Search instead for 
Did you mean: 

Re: Management ACL for HPE 5510

 
Highlighted
Occasional Contributor

Management ACL for HPE 5510

Hi, dear colleagues!

I have to restrict access to HTTPS and SSH to the HPE 5510. I need allow some net and a few hosts and deny all other.

What's the rightest way to do it?

2 REPLIES 2
Highlighted
HPE Pro

Re: Management ACL for HPE 5510

Hi

 

Kindly share more details related to device image etc.

Let me check for the ACL if I can help you with any link.

I am a HPE Employee
Accept or Kudo
Highlighted
Respected Contributor

Re: Management ACL for HPE 5510

Hi,

Best way is to assign an ACL to the https and ssh services, if the rules for each service is the same, you can use the same ACL.

Example of ACL:

 

acl number 2010 name Management-ACCESS
 rule 10 permit source 10.11.0.12 0 
 rule 10 comment allow single host. 
 rule 20 permit source 10.10.0.1 0.0.0.255
 rule 20 comment allow management network
 rule 10000 deny source any logging
 rule 10000 comment log any attempts outside allowed net

 


and then apply the ACL to https and ssh services.

 

ssh server acl 2010
ip https acl 2010

 

 

Regards

 

Søren Dideriksen, Network Administrator
Region Midtjylland