Fibre Channel (SAN)

Reply
Occasional Contributor
Posts: 12
Registered: ‎10-03-2005

Is it possible to disable telnet on v6.1.0c ?

Hi all,

I want to turn telnet off on my 200E switches and use ssh exclusively. Can anyone point me to the magic command to do this ?

Thanks

- Alex

Occasional Contributor
Posts: 5
Registered: ‎10-26-2007

Re: Is it possible to disable telnet on v6.1.0c ?

Starting FabOS 5.3 you can use ipfilter to disable network ports.

Here is an example of how I use to disable telnet (port 23)

ipfilter --create RULE_ipv4 -type ipv4
ipfilter --addrule RULE_ipv4 -rule 1 -sip any -dp 22 -proto tcp -act permit
ipfilter --addrule RULE_ipv4 -rule 2 -sip any -dp 161 -proto udp -act permit
ipfilter --addrule RULE_ipv4 -rule 3 -sip any -dp 123 -proto udp -act permit
ipfilter --addrule RULE_ipv4 -rule 4 -sip any -dp 80 -proto tcp -act deny
ipfilter --addrule RULE_ipv4 -rule 5 -sip any -dp 443 -proto tcp -act deny

ipfilter --create RULE_ipv6 -type ipv6
ipfilter --addrule RULE_ipv6 -rule 1 -sip any -dp 22 -proto tcp -act permit
ipfilter --addrule RULE_ipv6 -rule 2 -sip any -dp 80 -proto tcp -act deny
ipfilter --addrule RULE_ipv6 -rule 3 -sip any -dp 443 -proto tcp -act deny

ipfilter --save
ipfilter --activate RULE_ipv4
ipfilter --activate RULE_ipv6

Once you active ipfilter any other ports than 22, 161, 123 will be denied.

Join the Community

Get quick and easy access to valuable resource designed to help you manage your Brocade Network.

vADC is now Pulse Secure
Download FREE NVMe eBook