HPE Community
Comware Based
1752786 Members
5859 Online
108789 Solutions
New Discussion

Re: Management ACL for HPE 5510

 
BirdZu
Occasional Contributor

‎10-26-2019 12:29 AM

‎10-26-2019 12:29 AM

Management ACL for HPE 5510

Hi, dear colleagues!

I have to restrict access to HTTPS and SSH to the HPE 5510. I need allow some net and a few hosts and deny all other.

What's the rightest way to do it?

0 Kudos
2 REPLIES 2
nikunjbhatia
HPE Pro

‎10-30-2019 03:36 AM

‎10-30-2019 03:36 AM

Re: Management ACL for HPE 5510

Hi

 

Kindly share more details related to device image etc.

Let me check for the ACL if I can help you with any link.

I am a HPE Employee
Accept or Kudo
0 Kudos
sdide
Respected Contributor

‎12-04-2019 11:43 PM - edited ‎12-04-2019 11:43 PM

‎12-04-2019 11:43 PM - edited ‎12-04-2019 11:43 PM

Re: Management ACL for HPE 5510

Hi,

Best way is to assign an ACL to the https and ssh services, if the rules for each service is the same, you can use the same ACL.

Example of ACL:

 

acl number 2010 name Management-ACCESS
 rule 10 permit source 10.11.0.12 0 
 rule 10 comment allow single host. 
 rule 20 permit source 10.10.0.1 0.0.0.255
 rule 20 comment allow management network
 rule 10000 deny source any logging
 rule 10000 comment log any attempts outside allowed net

 


and then apply the ACL to https and ssh services.

 

ssh server acl 2010
ip https acl 2010

 

 

Regards

 

Søren Dideriksen, Network Administrator
Region Midtjylland
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.