How to control management access to Aruba switch 2930m

Trenuci · ‎06-23-2020

Hi,

May someone help me about configuring management access to aruba switch?
I am looking for similar command combination of ACL and vty access class (on cisco devices) so only certain IPs can access to switch.

Thank you a lot.

Ivan_B · ‎06-23-2020

Hi @Trenuci !

Check the "ArubaOS-Switch Hardening Guide" https://support.hpe.com/hpesc/public/docDisplay?docId=a00056155en_us , it is a good starting point. And keep in mind that ArubaOS is not Cisco, mapping Cisco commands and Cisco way to 3rd party products does not always work best. Specifically 2930m has features as 'Management VLAN', 'Out-of-Band Management port' that provide you even better protection than ACL on VTY. But if you insist to follow that way, seems like 'Authorized IP managers' is the closest match.

Hope this helps!

I am an HPE employee

Trenuci · ‎06-23-2020

Hi Ivan, thank you a lot for help.

Trenuci · ‎06-25-2020

Hi, sorry for bothering you again.

on page 10th. of that pdf:

switch(vlan-10)# ip access-group “mgmt-permit” in

I do not have "in" part of command. Only vlan-in (whitch permit/deny only traffic in and out of the same vlan.)

ip access-list extended "mgmt-permit"
switch(config-std-nacl)# 10 permit tcp 10.10.10.0/24 20.20.20.1/32 log

90 deny tcp any any log

vlan 140 (mgm vlan)
ip access-group "mgmt-permit" vlan-in

as a result: tottaly cut of, of my switch.

What I am doing wrong?

Categories

Company

Local Language

Forums

Discussions

Forums

Discussions

Discussions

Forums

Discussions

Forums

Discussions

Forums

Forums

Discussions

Forums

Discussions

Forums

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Community

Resources

Other HPE Sites

Discussions

Forums

Blogs

How to control management access to Aruba switch 2930m

How to control management access to Aruba switch 2930m

Re: How to control management access to Aruba switch 2930m

Re: How to control management access to Aruba switch 2930m

Re: How to control management access to Aruba switch 2930m