management gateway
This command sets the default gateway IP address.
The use of the negative (no) form of the command removes the default gateway IP address.
Syntax
management gateway <GATEWAY>
no management gateway
Parameters
<GATEWAY> – gateway IP address.
Command mode
CONFIG
Example
ma4000(config)# management gateway 192.168.24.15
management ip
This command specifies an IP address and a subnet mask for a crate.
The use of a negative (no) form of the command removes an IP address and a subnet mask for a crate.
Syntax
management ip <IP> <MASK>
no management ip
Parameters
<IP> – IP address;
<MASK> – subnet mask.
Command mode
CONFIG
Example
ma4000(config)# management ip 192.168.14.15 255.255.255.0
management vlan
This command sets management VLAN.
The use of a negative form (no) of the command sets VLANID to 1.
Syntax
management vlan <VID>
no management vlan
Parameters
<VID> – VLAN ID, may take values [1 .. 4094].
Command mode
CONFIG
Example
ma4000(config)# management vlan 7
The management is available via VLANID 7.
hostname
The command allows assigning a name to an object. The maximum length of a string is 32 characters.
Syntax
hostname <NAME>
Parameters
<NAME> – device name.
Command mode
CONFIG
Example
ma4000(config)# hostname test
The device will have the 'test' name.
show management
This command allows to view information about current network settings.
Syntax
show management
Parameters
The command contains no arguments.
Command mode
ROOT
Example
ma4000# show management Network parameters : ip 192.168.199.150 mask 255.255.255.0 gateway 192.168.199.2 vlan 199
management access-list default
This command allows to set the device access policy by access-list
Syntax
management access-list default <POLICY>
Parameters
<POLICY> – default access policy, may take values:
- allow – access granted for all hosts,
- deny – access denied for all hosts.
Command mode
CONFIG
Example
ma4000(config)# management access-list default allow
management access-list-any
add
This command allows to set access-list rules by protocol type and access interface without checking MAC/IP.
Syntax
add <POLICY> <PROTOCOL> <INTERFACE> [<PORT NUMBER>]
Parameters
<POLICY> – default access policy, may take values: allow, deny;
<PROTOCOL> – management protocol, may take values: any, http, ssh, telnet;
<INTERFACE> – management interface, may take values: any, front-port, port-channel, slot-channel;
<PORT NUMBER> – port number, if front-port/port-channel/slot-channel is selected as interface.
Command mode
MANAGEMENT ACCESS-LIST-ANY
Example
ma4000(acl)# add allow any front-port 1/1
insert
This command allows to add access-list rules to an existing list.
Syntax
insert <POLICY> <PROTOCOL> <INTERFACE> [<PORT NUMBER>]<POSITION>
Parameters
<POLICY> – default access policy, may take values: allow, deny;
<PROTOCOL> – management protocol, may take values: any, http, ssh, telnet;
<INTERFACE> – management interface, may take values: any, front-port, port-channel, slot-channel;
<PORT NUMBER> – port number, if front-port/port-channel/slot-channel is selected as interface;
<POSITION> – rule sequence number (see section show access-list).
Command mode
MANAGEMENT ACCESS-LIST-ANY
Example
ma4000(acl-ip)# insert allow any front-port 1/1 2.2.2.2 255.255.255.255 1
remove
This command allows to delete existing access-list rules.
Syntax
remove <POLICY>/<POSITION> <PROTOCOL> <INTERFACE> [PORT NUMBER] <IP ADDRESS> <MASK>
Parameters
<POLICY> – default access policy, may take values: allow, deny;
<POSITION> – rule sequence number (see table show access-list).
<PROTOCOL> – management protocol, may take values: any, http, ssh, telnet;
<INTERFACE> – management interface, may take values: any, front-port, port-channel, slot-channel;
<PORT NUMBER> – port number, if front-port/port-channel/slot-channel is selected as interface.
<IPADDRESS> – device IP address or network address;
<MASK> – subnet mask.
Command mode
MANAGEMENT ACCESS-LIST-IP
Example
ma4000(config)# remove allow any front-port 1/1 2.2.2.2 255.255.255.255
management access-list-mac
add
This command allows to add access-list rules by MAC address.
Syntax
add <POLICY> <PROTOCOL> <INTERFACE> [<PORT NUMBER>] <MAC ADDRESS>
Parameters
<POLICY> – default access policy, may take values: allow, deny;
<PROTOCOL> – management protocol, may take values: any, http, ssh, telnet;
<INTERFACE> – management interface, may take values: any, front-port, port-channel, slot-channel;
<PORT NUMBER> – port number, if front-port/port-channel/slot-channel is selected as interface.
<MACaddress> – device MAC address.
Command mode
MANAGEMENT ACCESS-LIST-MAC
Example
ma4000(acl-mac)# add allow any any 02:02:02:02:02:02
insert
This command allows to add access-list rules to an existing list.
Syntax
Insert <POLICY > <PROTOCOL> <INTERFACE> [<PORT NUMBER>] <MAC ADDRESS> <POSITION>
Parameters
<POLICY> – default access policy, may take values: allow, deny;
<PROTOCOL> – management protocol, may take values: any, http, ssh, telnet;
<INTERFACE> – management interface, may take values: any, front-port, port-channel, slot-channel;
<PORT NUMBER> – port number, if front-port/port-channel/slot-channel is selected as interface;
<MACADDRESS> – device MAC address;
<POSITION> – rule sequence number (see table show access-list).
Command mode
MANAGEMENT ACCESS-LIST-MAC
Example
ma4000 (acl-mac)# insert allow any front-port 1/1 03:03:03:03:03:03 0
remove
This command allows to delete existing access-list rules.
Syntax
remove <POLICY>/<POSITION> <PROTOCOL> <INTERFACE> [<PORT NUMBER>] <MAC ADDRESS> <POSITION>
Parameters
<POLICY> – default access policy, may take values: allow, deny;
<POSITION> – rule sequence number (see table show access-list).
<PROTOCOL> – management protocol, may take values: any, http, ssh, telnet;
<INTERFACE> – management interface, may take values: any, front-port, port-channel, slot-channel;
<PORT NUMBER> – port number, if front-port/port-channel/slot-channel is selected as interface;
<MACADDRESS> – device MAC address;
<POSITION> – rule sequence number (see table show access-list).
Command mode
MANAGEMENT ACCESS-LIST-MAC
Example
ma4000(acl-mac)# remove allow any front-port 1/1 03:03:03:03:03:03 0
management access-list clear
This command clears access-list.
Syntax
management access-list clear
Parameters
The command contains no arguments.
Command mode
CONFIG
Example
ma4000(config)# management access-list clear
show access-list
This command allows to view information about current access-lists.
Syntax
show access-list
Parameters
The command contains no arguments.
Command mode
ROOT
Example
ma4000# show access-list ACL MAC rules ~~~~~~~~~~~~~ Index Policy Proto Interface Mac ----- ------ ------ -------------------- ----------------------------------- 0 allow any any mac 02:02:02:02:02:02 ACL IP rules ~~~~~~~~~~~~ Index Policy Proto Interface Ip ----- ------ ------ -------------------- ----------------------------------- 0 allow ssh any ip 1.1.1.1 255.255.255.255 1 allow telnet any ip 1.1.1.1 255.255.255.255 ACL ANY rules ~~~~~~~~~~~~~ Index Policy Proto Interface ----- ------ ------ -------------------- 0 allow http front-port 2/2 1 allow ssh front-port 1/1 2 allow any front-port 1/3 DEFAULT RULE: allow