Cisco Systems 1105 用户手册
Appendix B Command Reference
Privilege Level 15 Commands
B-24
User Guide for the CiscoWorks 1105 Wireless LAN Solution Engine
78-14947-01
Do you want to continue?[no]:yes
firewall
To implement port filtering on the WLSE, use the firewall command.
firewall eth <0-5> [public | private] | [icmp telnet ssh snmp https 1741]
Syntax Description
eth <0-5>
Port to be configured. Acceptable values are eth0-5.
public
Denies access via ICMP, Telnet, SNMP, and the HTTP 1741
port.
port.
private
Denies no access.
icmp
Denies Internet Control Message Protocol (ICMP) ping
messages.
messages.
telnet
Denies incoming Telnet connections.
ssh
Denies incoming SSH connections.
snmp
Denies incoming SNMP requests.
https
Denies all connections to the SSL HTTP port.
1741
Denies all connections to the HTTP 1741 port.
Usage Guidelines
Use the firewall command to implement port filtering on the WLSE. To configure
an Ethernet port for secured public access, use the public option. To configure an
Ethernet port for local access, via a LAN or VLAN, use the private option. To
dissable icmp, Telnet, ssh, snmp, https, or to deny connections to the SSL HTTP
port or the HTTP 1741 port, use its corresponding option.
an Ethernet port for secured public access, use the public option. To configure an
Ethernet port for local access, via a LAN or VLAN, use the private option. To
dissable icmp, Telnet, ssh, snmp, https, or to deny connections to the SSL HTTP
port or the HTTP 1741 port, use its corresponding option.
Examples
•
Ethernet 0 port is connected to the Internet, and is configured to be accessible
only via HTTPS by entering the following command:
only via HTTPS by entering the following command:
firewall eth0
public ssh 1741