Access
Use the Access subtab to provision the physical access points and shell programs used to connect to the ONS node.
 
Item
Description
LAN Access
Provisions the ONS node access:
 •
LAN Access—Provisions the access points that are available for users to connect to the node.
 –
No LAN Access—Allows access to the node only through the DCC connections. Access through the TNC/TSC RJ-45 port and the backplane is not permitted.
 –
Backplane only—Allows access through DCC connections and the backplane. Access through the TNC/TSC RJ-45 connection is not permitted.
 –
Front only—Allows access through the TNC/TSC RJ-45 connection only. Access through DCC connections and the backplane is not permitted.
 –
Front and Backplane—Allows access through DCC, the TNC/TSC RJ-45 port, and backplane connections.
 •
Restore Timeout—Sets a period of time to delay enabling front and backplane access when DCC connections are lost and “No LAN Access” is chosen in LAN Access. Front and backplane access is enabled after the restore timeout period has passed. Front and backplane access is disabled when the DCC connections are restored.
 •
Disable IPV4 access for IPv6 enabled ports—If checked disables IPV4 access for IPv6 enabled ports. To enable you must uncheck the check box and click Apply.
Shell Access
Sets the shell program used to access the node:
 •
Access State—Allows you to set the shell program access mode to Disable, Non-Secure, or Secure. Secure mode allows access to the node using the Secure Shell (SSH) program. SSH is a terminal-remote host Internet protocol that uses encrypted links.
 •
Telnet Port—Allows access to the node using the Telnet port. Telnet is the terminal-remote host Internet protocol developed for the Advanced Agency Research Project Network (ARPANET). Port 23 is the default.
 •
Enable Shell Password—If checked, enables the SSH password. To disable the password, you must uncheck the check box and click Apply. You must type the password in the confirmation dialog box and click OK to disable it.
TL1 Access
Access State—Sets the TL1 access state. Disable (disables TL1 access), Non-Secure, or Secure (allows access using SSH).
Other
PM Clearing Privilege—Sets the security level that can clear performance monitoring data. Choices are Superuser or Provisioning.
Pseudo IOS Access
Access State—Available states are—Disable, Secure, and Non-secure. If the access state is set to the default state, non-secure, a PCLI session can be established using telnet.
Port—Enter the port number
EMS Access
Access State—Allows you to set the EMS access to Non-Secure or Secure (allows access using SSH).
In the CORBA (Internet Inter-ORB Protocol [IIOP]/Secure Socket Layer Internet Inter-ORB Protocol [SSLIOP]) Listener Port area, choose a listener port option:
 •
Default - TCC Fixed—Uses Port 57790 to connect to ONS nodes on the same side of the firewall or if no firewall is used (default). This option can be used for access through a firewall if Port 57790 is open.
 •
Standard Constant—Uses Port 683 (IIOP) or Port 684 (SSLIOP), the CORBA default port number.
 •
Other Constant—If the default port is not used, type the IIOP/SSLIOP port specified by your firewall administrator.
SNMP Access
Access State—Sets the SNMP access state to Non-Secure or Disabled (disables SNMP access).
Serial Craft Access
If checked, the Craft Port turns on the shelf controller serial ports.
Note
The ONS 15600 has two settings: Enable Craft Port A and Enable Craft Port B.
Apply
Applies changes made to the Access fields.
Reset
Cancels any Access subtab changes and returns the fields to their last-saved settings.
Help
Displays context-sensitive help.

Copyright © 2002-2011, Cisco Systems, Inc. All rights reserved.