No relevant resource is found in the selected language.
Enterprise
Worldwide
Search
Knowledge Base

Out of Band Management Access issue in USG6630E

Publication Date:  2020-09-30  |   Views:  1686  |   Downloads:  0  |   Author:  m84152756  |   Document ID:  EKB1100057200

Contents
Issue Description Handling Process Root Cause Solution Suggestions

Issue Description

We are facing issue to connect USG6630E firewall when we are connecting through our network . when we connect it directly through laptop it works fine.

We could see the session is completed in the firewall session table. But we are unable to reach Management IP

Handling Process

After checking the diag file we found the following :

 

===============display version===============

===================================================

2020-08-19 15:19:45.920 +04:00

Huawei Versatile Routing Platform Software

VRP (R) Software, Version 5.170 (USG6600E V600R007C00SPC200)

Copyright (C) 2014-2019 Huawei Technologies Co., Ltd.

USG6630E uptime is 0 week, 0 day, 20 hours, 40 minutes

 

 

interface MEth0/0/0

undo shutdown

ip binding vpn-instance default

ip address 192.168.0.1 255.255.255.0

service-manage http permit

service-manage https permit

service-manage ping permit

service-manage ssh permit

service-manage snmp permit

service-manage telnet permit

service-manage netconf permit

 

·       By default, the IP address of the Management Interface is 192.168.0.1. The interface has been added to the Trust zone, and the HTTP, HTTPS, and Ping permissions are enabled on the Management interface. You can access the device through the Management Interface without configuring any security policy.  .

 

·       VPN instance default is bound to the Management Interface by default. If the Management Interface is used to ping, STelnet, Telnet, FTP, or SFTP other PCs or devices, the vpn-instance default parameter must be specified, such as telnet vpn-instance default 10.2.2.1.

 

Reference Here

Root Cause

By default The management port is bound to VPN instance default

Solution

·      Kindly when you try to connect to management IP , specify the vpn-instance default in the command such as >> ping vpn-instance default 192.168.0.1

 

·      Or remove the default configuration ip binding vpn-instance default by run:

>> interface Meth0/0/0

>> undo ip binding vpn-instance default

Suggestions

We have done the configuration, to disable binding with defaut vpn-instance.

 

Now we are able to bind MGMT interface with public virtual system and access the firewall management

Feedback
Related resources
Documentation Software Download Bulletins Tools
Related searches
By Author
Help us to improve
Write an article

Copyright © 2023 Huawei Technologies Co., Ltd. All rights reserved.

You are going to visit :