Specifications
12-267
Cisco SN 5428-2 Storage Router Software Configuration Guide
78-15471-01
Chapter 12 Command Line Interface Reference
restrict
You can restrict access to the storage router interfaces by the services or protocols, shown in Table 12-18.
Table 12-17 restrict interface
Interface Keyword Description
ge? The Gigabit Ethernet interfaces (including all
logical interfaces created by associating a VLAN
with a Gigabit Ethernet IP address for a SCSI
routing instance). All services are restricted on
the Gigabit Ethernet interfaces by default.
ha The HA interface. This interface is open to HTTP
by default.
mgmt The management interface. This interface is open
to Telnet, HTTP, SNMP and SSH by default.
Table 12-18 restrict interface service
Service Keyword Description
ftp File Transfer Protocol. FTP access is restricted on
all interfaces, by default.
http Hypertext Transfer Protocol. HTTP access is
available on the management and HA interfaces,
by default.
rlogin Remote login on port 513. If rlogin is enabled for
an interface, the setting is only valid until the
storage router is restarted. The rlogin setting is
not retained across a storage router restart; rlogin
returns to a restricted state for all interfaces.
Note Rlogin is designed for debug purposes and
should be used under the guidance of a
Cisco Technical Support professional.
ssh Secure Shell. SSH can be used as a replacement
for Telnet and remote login. SSH is enabled on the
management interface by default; it is restricted
on all other interfaces.
Note The SSH service is started, by default.
Use the no ssh enable command to stop
the SSH service (disabling access via
SSH) without changing the restrict
settings.
snmp Simple Network Management Protocol. SNMP is
enabled on the management interface by default.