Raritan Computer SX48 用户手册

HAPTER

ONSOLE

EATURES

SSH/Telnet –Command Line Interface (CLI) User Interface

Important:

Make certain that the IP address from which you are connected to the Dominion SX is not

accidentally entered into the IP ACL deny list (“Allow=NO”); if the IP Address is in the deny list,
the Dominion SX unit will be inaccessible. If this happens, you must reset the Dominion SX unit to
factory default settings; when reset, all Dominion SX settings will be lost and must be
reconfigured.

We recommend that you turn IP ACL logging OFF when creating an Allow rule. If not, every

accepted packet that matches the rule will be logged, causing the log file to increase in size very
quickly.

NAME:
ipacl [enable/disable/status]

DESCRIPTION:
Enable / disable IP Access Control lists.

ipacl status

Display the enable /disable status. Display all configured IPACL

rules.

ipacl <enable|disable>

Depending on the parameter, enable or disable ipacl.

USAGE EXAMPLE:
admin:Command>ipacl status
ipacl Status
Enabled: 0 No
ipacl List Count : 3
ipacl Rules: [startip] [endip] [Allow/Deny] [Log]
      0.) 1.1.1.1 1.1.1.1 Deny Yes
      1.) 2.2.2.2 2.2.2.2 Allow  No
      2.) 192.168.127.233  192.168.127.233  Allow Yes

NAME:
aclcfg <[list] | [clear] | [move <pos1> <pos2>] |
      [delete <pos1> [pos2] ] | [add <ip1> <ip2> <denyflag> <logflag>]>

DESCRIPTION:
Configure IP ACL parameters. The ordering of the rules in the list are followed starting at 0 (zero) and
moving downward. When a connection attempt is made, the list is traversed and the first rule that fits will
be executed.

See IPTables documentation for more specific details on creation and management of the IPACL rule lists.

aclcfg list

Same as “ipacl status” command, display ipacl configuration and rule list.

aclcfg clear

Remove all the ipacl rules current in the list.