1 Rookie
•
2 Posts
0
264
March 19th, 2024 08:29
Apply an ACL to the Management VRF
Hi, is it possible to apply an ACL to the management plane on a S5248F? We have moved the management interface into the management VRF as well as the snmp servers. I have tried the ip access-class on line vty and it still lets all IPs to log on to the switch.
TIA
Rich
No Events found!
DELL-Charles R
Moderator
•
4.4K Posts
0
March 19th, 2024 14:20
Hello,
VTY ACLs are used only to block the source IP hosts which connect through SSH or telnet to the device management IP.
You cannot use these ACLs with any other qualifiers such as UDP or TCP port, destination IP, ICMP, and so on.
There is no implicit deny rule, so you need to add a deny rule at the end.
Here are instructions how to configure Management ACL to block Management access on OS10 Switches:
https://dell.to/490SkE3
The VTY ACL configuration syntax does not need to change for management VRF, however please check if any of these need to be changed:
Configure the SSH server to be reachable on the management VRF using the ip ssh server vrf command.
OS10(config)# ip ssh server vrf management
To allow Telnet TCP/IP connections to an OS10 switch, enable the Telnet server.
OS10(config)# ip telnet server vrf management
Configures an SNMP agent to receive SNMP traps for the management VRF instance.
OS10(config)# snmp-server vrf management
RichMBC
1 Rookie
•
2 Posts
0
March 20th, 2024 14:30
Thank you @DELL-Charles R
The ACL required the deny at the end.
infraCIA
1 Rookie
•
2 Posts
0
November 7th, 2024 17:38
Hi, The link https://dell.to/490SkE3 not work.
DELL-Chris H
Moderator
•
9.4K Posts
0
November 7th, 2024 17:46
infraCIA,
In order to access the link, you need to be signed in to the Dell page, as it worked for me.
infraCIA
1 Rookie
•
2 Posts
0
November 8th, 2024 11:17
Hi,
That's right, after authenticating when clicking on the link, the page not found message appears, as shown in the image below.
DELL-Marco B
Moderator
•
3.8K Posts
0
November 8th, 2024 12:45
Hello,
here you can find some example for ACL
Control access to management functions | Management Networks for Dell EMC Networking Configuration Guide | Dell Technologies Info Hub
and here for ACL filters
Dell EMC SmartFabric OS10 User Guide Release 10.5.2 | Dell US