Objective: To separate management traffic from data/customer traffic on your Cisco Catalyst 4500 L3 Switch Preferably, Data and Management are into 2 separate network domains. Pre-requisite: UTP cable to connect to management port (via FastEthernet 1) and the other end is connected to a network switch to access the OOB management gateway Tested on Cisco IOS Version 15.1 (Cisco Catalyst 4948E) * * Management IP Configuration* * 1. Configure the vrf for management vrf definition management ! address-family ipv4 exit-address-family ! address-family ipv6…
Tag: <span>NTP</span>
Objective: To separate management traffic from data/customer traffic in your Huawei Routers Preferably, Data and Management are into 2 separate network domains. Pre-requisite: UTP cables (for each MPU management port in case for switchover) are connected to a network switch to access the OOB management gateway To go configuration mode: system-view To preview configuration change before commiting display configuration candidate * * Management IP Configuration* * a. Configure the vpn instance for management ip vpn-instance <vpn instance name> description <description> ipv4-family b. Set…
Objective: To separate management traffic from data/customer traffic in your Cisco XR routers. Preferably, Data and Management are into 2 separate network domains. Pre-requisite: UTP cables (for each RSP management port in case for switchover) are connected to a network switch to access the OOB management gateway * * Management IP Configuration* * 1. Configure the vrf for management vrf management description VRF for Out-of-Band address-family ipv4 unicast 2. Set the physical IP address on each RSP management port. There are total of…
Cisco IOS e.g. Vlan10 = interface management vlan NTP Server = 192.168.10.100 1. Configure ACL to deny NTP requests and query conf t access-list 100 remark to block NTP requests and query access-list 100 deny any 2. Configure ACL to allow only the NTP servers to peer or synch with access-list 200 remark NTP to peer access-list 200 permit 192.168.10.100 access-list 200 deny any 3. Configure NTP conf t ntp source Vlan10 ntp access-group peer 200 ntp access-group serve 100 ntp access-group…
Leave a Comment