1.1.254:8080
or http://10.1.1.254:8080, respectively).
Telnet and SSH Access
As discussed earlier, Telnet protocol is not a secure access method and therefore is disabled by default on the
sensor appliance. However, SSH is enabled by default on the sensor and is a secure access method. If required,
Telnet protocol can be enabled by using the telnet-option enabled command under the network settings in
the service host mode or can be enabled when using the setup wizard.
Access Control List
Sensor appliance uses the ACL to enforce authorized access to the appliance via HTTP, HTTPS, FTP, Telnet, SSH,
or SCP. If you use an ACL, you need to configure a list of authorized IP addresses and networks that are allowed
to log in to the sensor (for example, hosts that need to Telnet/SSH to the sensor or access via IDM, or
management workstations). By default, the Class A subnet 10.0.0.0/8 is permitted. When a host with an IP
address that is not defined in the ACL attempts to log in to the sensor appliance, the sensor will drop the
connection automatically.
The access-list [ip_address / netmask] command in the network-settings submode in service host mode
can be used to configure the list of hosts or networks requiring sensor access.
Pages:
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159