interface | Easy IPv6 deployments & others

Create a VRF

ip vpn-instance oob-mgmt
description oob-mgmt-net
ipv4-family
#

Add the interface into the VRF

interface giga 0/0/0
description rear-eth-mgmt
undo shutdown
ip binding vpn-instance oob-mgmt
ip address 10.0.0.100 24
#

Set a static route as gateway

ip route-static vpn-instance oob-mgmt 0.0.0.0 0.0.0.0 10.0.0.1 description oob-mgmt-gw

Allow access via ACL

acl name ssh-access number mgmt-acl
rule 10 permit vpn-instance oob-mgmt source 172.16.0.0 0.0.255.255
rule 20 permit vpn-instance oob-mgmt source 192.168.100.0 0.0.0.255
rule 30 permit vpn-instance oob-mgmt source 10.0.0.200 0

Restrict SSH Access

user-interface vty 0 4
 acl ssh-access inbound
 authentication-mode aaa
 protocol inbound ssh
#

Easy IPv6 deployments & others

„Knowledge is of two kinds. We know a subject ourselves, or we know where we can find information on it.“ Johnson, Samuel. 1709 – 1784

Tag Archives: interface

How-to – Setup an OOB interface on a Huawei router

Create a VRF

Add the interface into the VRF

Set a static route as gateway

Allow access via ACL

Restrict SSH Access