This command sets the default gateway IP address.
The use of the negative (no) form of the command removes the default gateway IP address.
management gateway <GATEWAY>
no management gateway
<GATEWAY> – gateway IP address.
CONFIG
ma4000(config)# management gateway 192.168.24.15 |
This command specifies an IP address and a subnet mask for a crate.
The use of a negative (no) form of the command removes an IP address and a subnet mask for a crate.
management ip <IP> <MASK>
no management ip
<IP> – IP address;
<MASK> – subnet mask.
CONFIG
ma4000(config)# management ip 192.168.14.15 255.255.255.0 |
This command sets management VLAN.
The use of a negative form (no) of the command sets VLANID to 1.
management vlan <VID>
no management vlan
<VID> – VLAN ID, may take values [1 .. 4094].
CONFIG
ma4000(config)# management vlan 7 |
The management is available via VLANID 7.
The command allows assigning a name to an object. The maximum length of a string is 32 characters.
hostname <NAME>
<NAME> – device name.
CONFIG
ma4000(config)# hostname test |
The device will have the 'test' name.
This command allows to view information about current network settings.
show management
The command contains no arguments.
ROOT
ma4000# show management Network parameters : ip 192.168.199.150 mask 255.255.255.0 gateway 192.168.199.2 vlan 199 |
This command allows to set the device access policy by access-list
management access-list default <POLICY>
<POLICY> – default access policy, may take values:
CONFIG
ma4000(config)# management access-list default allow |
This command allows to set access-list rules by protocol type and access interface without checking MAC/IP.
add <POLICY> <PROTOCOL> <INTERFACE> [<PORT NUMBER>]
<POLICY> – default access policy, may take values: allow, deny;
<PROTOCOL> – management protocol, may take values: any, http, ssh, telnet;
<INTERFACE> – management interface, may take values: any, front-port, port-channel, slot-channel;
<PORT NUMBER> – port number, if front-port/port-channel/slot-channel is selected as interface.
MANAGEMENT ACCESS-LIST-ANY
ma4000(acl)# add allow any front-port 1/1 |
This command allows to add access-list rules to an existing list.
insert <POLICY> <PROTOCOL> <INTERFACE> [<PORT NUMBER>]<POSITION>
<POLICY> – default access policy, may take values: allow, deny;
<PROTOCOL> – management protocol, may take values: any, http, ssh, telnet;
<INTERFACE> – management interface, may take values: any, front-port, port-channel, slot-channel;
<PORT NUMBER> – port number, if front-port/port-channel/slot-channel is selected as interface;
<POSITION> – rule sequence number (see section show access-list).
MANAGEMENT ACCESS-LIST-ANY
ma4000(acl-ip)# insert allow any front-port 1/1 2.2.2.2 255.255.255.255 1 |
This command allows to delete existing access-list rules.
remove <POLICY>/<POSITION> <PROTOCOL> <INTERFACE> [PORT NUMBER] <IP ADDRESS> <MASK>
<POLICY> – default access policy, may take values: allow, deny;
<POSITION> – rule sequence number (see table show access-list).
<PROTOCOL> – management protocol, may take values: any, http, ssh, telnet;
<INTERFACE> – management interface, may take values: any, front-port, port-channel, slot-channel;
<PORT NUMBER> – port number, if front-port/port-channel/slot-channel is selected as interface.
<IPADDRESS> – device IP address or network address;
<MASK> – subnet mask.
MANAGEMENT ACCESS-LIST-IP
ma4000(config)# remove allow any front-port 1/1 2.2.2.2 255.255.255.255 |
This command allows to add access-list rules by MAC address.
add <POLICY> <PROTOCOL> <INTERFACE> [<PORT NUMBER>] <MAC ADDRESS>
<POLICY> – default access policy, may take values: allow, deny;
<PROTOCOL> – management protocol, may take values: any, http, ssh, telnet;
<INTERFACE> – management interface, may take values: any, front-port, port-channel, slot-channel;
<PORT NUMBER> – port number, if front-port/port-channel/slot-channel is selected as interface.
<MACaddress> – device MAC address.
MANAGEMENT ACCESS-LIST-MAC
ma4000(acl-mac)# add allow any any 02:02:02:02:02:02 |
This command allows to add access-list rules to an existing list.
Insert <POLICY > <PROTOCOL> <INTERFACE> [<PORT NUMBER>] <MAC ADDRESS> <POSITION>
<POLICY> – default access policy, may take values: allow, deny;
<PROTOCOL> – management protocol, may take values: any, http, ssh, telnet;
<INTERFACE> – management interface, may take values: any, front-port, port-channel, slot-channel;
<PORT NUMBER> – port number, if front-port/port-channel/slot-channel is selected as interface;
<MACADDRESS> – device MAC address;
<POSITION> – rule sequence number (see table show access-list).
MANAGEMENT ACCESS-LIST-MAC
ma4000 (acl-mac)# insert allow any front-port 1/1 03:03:03:03:03:03 0 |
This command allows to delete existing access-list rules.
remove <POLICY>/<POSITION> <PROTOCOL> <INTERFACE> [<PORT NUMBER>] <MAC ADDRESS> <POSITION>
<POLICY> – default access policy, may take values: allow, deny;
<POSITION> – rule sequence number (see table show access-list).
<PROTOCOL> – management protocol, may take values: any, http, ssh, telnet;
<INTERFACE> – management interface, may take values: any, front-port, port-channel, slot-channel;
<PORT NUMBER> – port number, if front-port/port-channel/slot-channel is selected as interface;
<MACADDRESS> – device MAC address;
<POSITION> – rule sequence number (see table show access-list).
MANAGEMENT ACCESS-LIST-MAC
ma4000(acl-mac)# remove allow any front-port 1/1 03:03:03:03:03:03 0 |
This command clears access-list.
management access-list clear
The command contains no arguments.
CONFIG
ma4000(config)# management access-list clear |
This command allows to view information about current access-lists.
show access-list
The command contains no arguments.
ROOT
ma4000# show access-list ACL MAC rules ~~~~~~~~~~~~~ Index Policy Proto Interface Mac ----- ------ ------ -------------------- ----------------------------------- 0 allow any any mac 02:02:02:02:02:02 ACL IP rules ~~~~~~~~~~~~ Index Policy Proto Interface Ip ----- ------ ------ -------------------- ----------------------------------- 0 allow ssh any ip 1.1.1.1 255.255.255.255 1 allow telnet any ip 1.1.1.1 255.255.255.255 ACL ANY rules ~~~~~~~~~~~~~ Index Policy Proto Interface ----- ------ ------ -------------------- 0 allow http front-port 2/2 1 allow ssh front-port 1/1 2 allow any front-port 1/3 DEFAULT RULE: allow |