Configuring Device Security
Defining Access Methods
ESW 500 Series Switches Administration Guide 131
-
HTTP
— Assigns HTTP access to the rule. If selected, users accessing
the device using HTTP meeting access profile criteria are permitted or
denied access to the device.
-
Secure HTTP (HTTPS)
— Assigns HTTPS access to the rule. If selected,
users accessing the device using HTTPS meeting access profile criteria
are permitted or denied access to the device.
-
SNMP
— Assigns SNMP access to the rule. If selected, users accessing
the device using SNMP meeting access profile criteria are permitted or
denied access to the device.
•Interface — Defines the interface on which the access profile is defined. The
possible field values are:
-
Port
— Specifies the port on which the access profile is defined.
-
EtherChannel
— Specifies the EtherChannel on which the access profile
is defined.
-
VLAN
— Specifies the VLAN on which the access profile is defined.
•Source IP Address — Defines the interface source IP address to which the
access profile applies. The Source IP Address field is valid for a subnetwork.
•Network Mask — Determines what subnet the source IP Address belongs to in
the network.
•Prefix Length — Defines the number of bits that comprise the source IP
address prefix, or the network mask of the source IP address.
•Action — Defines the action attached to the rule. The possible field values are:
-
Permit
— Permits access to the device.
-
Deny
— Denies access to the device. This is the default.
STEP 3 Define the relevant fields.
STEP4 Click Apply. The access profile is added, and the device is updated.
Defining Profile Rules
Access profiles can contain up to 128 rules that determine which users can
manage the switch module, and by which methods. Users can also be blocked
from accessing the device. Rules are composed of filters including: