Specifications
12-266
Cisco SN 5428-2 Storage Router Software Configuration Guide
78-15471-01
Chapter 12 Command Line Interface Reference
restrict
restrict
To close access to the specified interface via the named service, use the restrict command. To allow
access via the named service, use the no form of this command.
restrict all [service]
restrict interface {service | all}
no restrict all [service]
no restrict interface {service |all}
Syntax Description
Defaults The following are factory default settings:
• FTP using port 21 is restricted on all interfaces.
• HTTP using port 80 is allowed on the management and HA interfaces. It is restricted on the Gigabit
Ethernet interfaces.
• Remote login (rlogin) using port 513 is restricted on all interfaces.
• SNMP using port 161 is allowed on the management interface only. It is restricted on the HA and
Gigabit Ethernet interfaces.
• SSH using port 22 is allowed on the management interface only. It is restricted on the HA and
Gigabit Ethernet interfaces.
• SSL using port 443 is restricted on all interfaces.
• Telnet using port 23 is allowed on the management interface only. It is restricted on the HA and
Gigabit Ethernet interfaces.
Command Modes Administrator.
Command History
Usage Guidelines Use the restrict command to restrict unauthorized access to storage router interfaces. Use the
show restrict command to display the current interface and service restrictions.
You can restrict access on the interfaces listed in Table 12-17.
interface Restrict access to the specified interface. See Table 12-17 in the Usage
Guidelines section for a list of interface names.
service Restrict access via the specified service or protocol. See Table 12-18 in the
Usage Guidelines section for a list of service names.
all Restrict all interfaces or all services.
Release Modification
3.2.1 This command was introduced.