what fabric OS ? On 6.x you can do this:

To disable telnet:

ipfilter --create block_telnet_v4 --type ipv4

ipfilter --addrule block_telnet_v4 -rule 2 -sip any -dp 23 -proto tcp -act deny

ipfilter --save block_telnet_v4

ipfilter --activate block_telnet_v4

To re-enable telnet:

ipfilter --delete block_telnet_v4

ipfilter --save


...to do ssh ..change port 23 to 22.

i read the admin guide, but wasnt' able to find anything except using ipfilter to filter out either telnet or ssh, but is there a way to natively enable/disable either protocol?

i think it has admin rights, because that's the same account i use to do zoning and the new policy i just created, which blocked me out

ok, i found the answer to my previous question is yes, i locked myself out, i can connect to console though, but when i try to delete the new rule i just created, it says,

Not owner of the current transaction

help!

what commands are you using to remove the rule ?

the account you are using on the console ..does it have admin role ?

you might also try:

ipfilter ¿-transabort

what if you simply run "ipfilter --save"

so ipfilter is the only way? bummer

anyhow, do i have to create another rule to state any other traffic is allowed?

i tried both removing the policy and removing the rule that denies telnet connection which is the #1 rule and the only rule in the policy, here's the commands i tried

ipfilter --delete block_telnet
ipfilter --delrule block_telnet -rule 1

the response to both commands is

Not owner of the current transaction

and yes, i tried "ipfilter --transabort", it took it but doesn't seem to do anything for me, i'm still locked out

it's like your telnet session is stuck. Can you run "killtelnet" and see if there are any sessions hung ?

i actually used a web session to create the policy

and using "killtelnet", the only connection i can see is the console session

can you post output from "ipfilter --show"