Manualshelf

User guide

ManualsBrandsDigi ManualsComputer equipmentTS 8 MEI
81828384858687888990
set auth
90 Chapter 2 Command Descriptions
set auth
Device support This command is supported in PortServer TS Family devices only.
Purpose Configures or displays access permissions to serial ports for LAN users.
The "set auth" command is a very powerful tool for limiting LAN users’
access to ports. To produce the intended configuration results, follow these
principles:
The default access permission for a port is unrestricted access. This
means that all IP addresses have unrestricted access to a port unless
you use the "set auth" command to place restrictions on port use.
You can configure a new default by removing the default entry in the
auth table (the entry that specifies an IP address of 0.0.0.0 and mask of
0.0.0.0). Then, the default becomes no access for any IP address. You
can then use the command to permit access for particular IP
addresses.
In addition to unrestricted access, there are three types of restricted
access:
Login access. The user of an IP address must log in before
access to the port is granted.
RealPort access. Only the RealPort application can use the port.
No access. The user of the IP address cannot access the port.
The most reliable way to use the command for configuration is to
explicitly specify the type of access for each port on each command. In
the examples that follow, which use an 8-port device, the “right”
command accounts for all ports, and the “wrong” one does not:
When the only option specified on the "set auth" command is an IP
address, that IP address loses all access rights to all outbound ports.
When you use the "set auth" command to change access permissions
for a particular IP address (or range of addresses), all other IP
addresses are unaffected by the command.
The "mask" option extends the scope of the "set auth" command to a
range of IP addresses. In each mask position that a binary 1 appears,
the incoming address must match perfectly with the address specified
on the "ip" option.
The auth table is limited to 20 entries.
Required
permissions
The root user can configure access permissions. Normal users can display
access permissions.
Right:
set auth ip=192.10.10.10 realport=1-3 login=4-5
unrestricted=6-8
Wrong:
set auth ip=192.10.10.10 realport=1-3 login=4-5