Product specifications
Efficient Networks
®
Router family
Technical Reference Guide
Chapter 5: System Security
Efficient Networks
®
Page 5-17
Restricting Remote Access
To allow remote management while making it more difficult for non-authorized
persons to access the router, you may redefine the ports to a less well-known value.
When Network Address Translation (NAT) is used, this port redefinition feature also
allows you to continue using the standard ports with another device on the LAN
(provided the appropriate NAT server ports commands are issued), while
simultaneously managing the router (with non-standard ports).
For example, the following commands redefine the Telnet, SNMP, HTTP, and Syslog
ports:
-> system telnetport 4321
-> system snmpport 3214
5
-> snmp snmpport 3214
5
-> system httpport 5678
-> system syslogport 6789
Changing the SNMP Community Name
Changing the SNMP community name from its default value of “public” to another
string may further enhance SNMP security. This string then acts like a password, but
this password is sent in the clear over the WAN/LAN, in accordance with the SNMP
specification.
Use the following commands to change the SNMP community name.
-> system community <new community name>
6
-> snmp community <new community name>
6
-> save
-> reboot
5
Command functions are identical.
6
Command functions are identical.