Cisco WS-C4003 Software Guide - Page 261
Enabling IP Permit List
View all Cisco WS-C4003 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 261 highlights
Chapter 17 Configuring the IP Permit List Configuring the IP Permit List Console> (enable) set ip permit 172.20.52.3 all 172.20.52.3 added to IP permit list. Console> (enable) set ip permit 172.20.52.31 255.255.255.224 ssh 172.20.52.31 with mask 255.255.255.224 added to Ssh permit list. Console> (enable) show ip permit Telnet permit list disabled. Ssh permit list disabled. Snmp permit list disabled. Permit List Mask Access-Type 172.16.0.0 255.255.0.0 telnet 172.20.0.0 255.255.0.0 snmp 172.20.52.0 255.255.255.224 ssh 172.20.52.3 telnet ssh snm Denied IP Address Last Accessed Time Type Telnet Count SNMP Count 172.100.101.104 01/20/97,07:45:20 SNMP 14 1430 172.187.206.222 01/21/97,14:23:05 Telnet 7 236 Console> (enable) Enabling IP Permit List You can enable either the SNMP permit list, the Telnet permit list, or both lists. If you do not specify a permit list, both the SNMP and Telnet permit lists are enabled. Caution Before enabling the IP permit list, make sure you add the IP address of your workstation or network management system to the permit list, especially when configuring through SNMP. Failure to do so could result in your connection being dropped by the switch you are configuring. We recommend that you disable IP permit list before clearing IP permit entries or host addresses. To enable IP permit list on the switch, perform this task in privileged mode: Step 1 Step 2 Step 3 Step 4 Task Enable the IP permit list. If desired, enable the IP permit trap to generate traps for unauthorized access attempts. If desired, configure the logging level to see syslog messages for unauthorized access attempts. Verify the IP permit list configuration. Command set ip permit enable [ssh | snmp | telnet] set snmp trap enable ippermit set logging level ip 4 default show ip permit show snmp This example shows how to enable the IP permit list and verify the configuration: Console> (enable) set ip permit enable Telnet, Snmp and Ssh permit list enabled Console> (enable) set snmp trap enable ippermit SNMP IP Permit traps enabled. Console> (enable) set logging level ip 4 default System logging facility set to severity 4(warnings) Console> (enable) show ip permit Telnet permit list enabled. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 17-3