Implementing Management Plane Protection on Cisco IOS XR Software
How to Configure a Device for Management Plane Protection
SC-231
Cisco IOS XR System Security Configuration Guide
Step 5
interface {
type instance
| all}
Example:
RP/0/RP0/CPU0:router(config-mpp-inband)# interface
POS 0/5/0/0
RP/0/RP0/CPU0:router(config-mpp-inband-POS0_5_0_0)#
Configures a specific inband interface or all inband
interfaces as an inband interface. Use the interface
command to enter management plane protection
inband interface configuration mode.
Among the list of interfaces, RP and SRP Ethernet
interfaces cannot be configured.
• Use the all keyword to configure all interfaces.
Step 6
allow {
protocol
| all}
Example:
RP/0/RP0/CPU0:router(config-mpp-inband-POS0_5_0_0)#
allow SSH
Configures an interface as an inband interface for a
specified protocol or all protocols.
• Use the protocol argument to allow
management protocols on the designated
management interface.
–
HTTP or HTTPS
–
SNMP (also versions)
–
Secure Shell (v1 and v2)
–
TFTP
–
Telnet
• Use the all keyword to configure the interface to
allow all the management traffic that is
specified in the list of protocols.
Command or Action Purpose
To Next Page
Loading...
