Access
Use the Access subtab to provision the physical access points and shell programs used to connect to the ONS node.
 
Item
Description
LAN Access
LAN Access
Provisions the access points that are available for users to connect to the node. The choices are:
No LAN Access—Allows access to the node only through the DCC connections. Access through the TCC2P RJ-45 port and the backplane is not permitted.
Backplane only—Allows access through DCC connections and the backplane. Access through the TCC2P RJ-45 connection is not permitted.
Front only—Allows access through the TCC2P RJ-45 connection only. Access through DCC connections and the backplane is not permitted.
Front and Backplane—Allows access through DCC, the TCC2P RJ-45 port, and backplane connections.
Restore Timeout
Sets a period of time to delay enabling front and backplane access when DCC connections are lost and No LAN Access is chosen in the LAN Access field. Front and backplane access is enabled after the restore timeout period has passed. Front and backplane access is disabled when the DCC connections are restored.
Disable IPv4 access for Ipv6 enabled ports
If checked, IPv4 access gets disabled on ports which have IPv6 enabled. By default, this option is not checked.
Shell Access
Access State
Allows you to set the shell program access mode to Disable, Non-Secure, or Secure. Secure mode allows access to the node using the SSH program. SSH is a terminal-remote host Internet protocol that uses encrypted links.
Telnet Port
Allows access to the node using the Telnet port. Telnet is the terminal-remote host Internet protocol developed for the ARPANET. Port 23 is the default.:
Enable Shell Password
If checked, enables the SSH password. To disable the password, you must uncheck the check box and click Apply. You must type the password in the confirmation dialog box and click OK to disable it.
TL1 Access
Access State
Sets the TL1 access state. Choices are Disable (disables TL1 access), Non-Secure, or Secure (allows access using SSH).
Other
PM Clearing Privilege
Sets the security level that can clear performance monitoring data. Choices are Superuser or Provisioning.
Pseudo IOS Access
Access State
Allows you to set the Pseudo IOS access mode to Disable, Non-Secure, or Secure. Secure mode allows access to the node using the Secure Shell (SSH) program. SSH is a terminal-remote host Internet protocol that uses encrypted links.
Port
Allows access to the node using the Telnet port. Telnet is the terminal-remote host Internet protocol developed for the Advanced Agency Research Project Network (ARPANET). Port 23 is the default.
EMS Access
Access State
Allows you to set the EMS access to Non-Secure or Secure (allows access using SSH).
TCC CORBA (IIOP) Listener Port
In the CORBA (Internet Inter-ORB Protocol [IIOP]/Secure Socket Layer Internet Inter-ORB Protocol [SSLIOP]) Listener Port area, choose a listener port option:
Default - Fixed—Uses Port 57790 to connect to ONS nodes on the same side of the firewall or if no firewall is used (default). This option can be used for access through a firewall if Port 57790 is open.
Standard Constant—Uses Port 683 (IIOP) or Port 684 (SSLIOP), the CORBA default port number.
Other Constant—If the default port is not used, type the IIOP/SSLIOP port specified by your firewall administrator.
SNMP Access
Access State
Sets the SNMP access state to Non-Secure or Disabled (disables SNMP access).
Serial Craft Access
Enable Craft Port
When checked, turns on the shelf controller serial port(s).
Note
The ONS 15600 and ONS 15310-MA have two settings: Enable Craft Port A and Enable Craft Port B.
Apply
Applies changes made to the Access fields.
Reset
Cancels any Access subtab changes and returns the fields to their last-saved settings.
Help
Displays context-sensitive help.

Copyright © 2002-2009, Cisco Systems, Inc. All rights reserved.