Product specifications
Efficient Networks
®
Router family
Technical Reference Guide
Chapter 5: System Security
Efficient Networks
®
Page 5-15
Controlling Remote Management
Several methods are available for controlling remote management of the system,
these methods include:
• Disabling Remote Management by disabling post access for the specified
service.
• Validating Clients based on the remote IP address.
• Restricting Remote Access by re-defining conventional (or default) port
numbers to alternate port numbers.
• Changing the SNMP Community Name or SNMP Password
• Disabling WAN Management, allowing management functions from the LAN-
side only.
With the following security control features, the user can control remote management
of the router via Telnet, HTTP, Syslog, and/or SNMP. Disabling SNMP stops an SNMP
Manager from accessing the router, which in some environments is desirable.
Router system event messages can be automatically sent to a Unix Syslog server.
The system syslogport and system addsyslogserver commands control the port
number and valid IP addresses. For more information, see “Syslog Client” on page 7-
1.
Disabling Remote Management
To completely disable remote management, enter the following commands from the
command line:
-> system telnetport disabled
-> system snmpport disabled
1
-> snmp snmpport disable
1
-> system httpport disabled
-> system syslogport disabled
-> save
-> reboot
Re-enabling Remote Management
To reestablish the disabled remote management services, restore the default values
with the commands:
-> system telnetport default
1
Command functions are identical.