× NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Orbi WiFi 7 RBE973
Reply

Security -> Access section of Admin GUI of M4300 does not exist as docs state.

vill41n
Aspirant

Security -> Access section of Admin GUI of M4300 does not exist as docs state.

Trying to disable some old protocols on this M4300 switch that are enabled by default. We'd like to start by enabling HTTPS and disabling HTTP, followed by disabling Telnet and enabling SSH.

 

https://www.downloads.netgear.com/files/GDC/M4300/M4300_M4300-96X_UM_EN.pdf

 

Page 527 states: 4. Select Security > Access > HTTPS > HTTPS Configuration.

 

and

 

4. Select Security > Access > Telnet.

 

But the security menu on the left section of my admin gui post login does not show any sections under Security at all.  I've tried on Chrome and Edge without luck. I tried upgrading to firmware to 12.0.17.16 which didn't result in the Access section to show up..  Can this only be done via the console? 

 

netgear.PNG

Message 1 of 5
schumaku
Guru

Re: Security -> Access section of Admin GUI of M4300 does not exist as docs state.


@vill41n wrote:

Trying to disable some old protocols on this M4300 switch that are enabled by default. We'd like to start by enabling HTTPS and disabling HTTP, followed by disabling Telnet and enabling SSH.

Permit (or fully deny) any telnet and http access similar to the two examples for configuring Management ACL (for IPv4) and Configure IPv6 ACLs as shown in the examples on the M4300 Intelligent Edge Series Fully Managed Stackable Switches Software Administration Manual starting from p.221 ff.

Message 2 of 5
vill41n
Aspirant

Re: Security -> Access section of Admin GUI of M4300 does not exist as docs state.

That seems right. Thank you. However, it looks like my switch does not support secure protocols. See below. 

 

(M4300-52G) >enable (M4300-52G) #config (M4300-52G) (Config)#ip access-list acl_for_cpu (M4300-52G) (Config-ipv4-acl)#permit tcp any host 169.254.100.100 eq ssh Invalid keyword. Currently supported TCP port keywords are bgp, domain, echo, ftp, ftpdata, http, pop2, pop3, smtp, telnet and www. Currently supported UDP port keywords are domain, echo, ntp, rip, snmp, tftp, time and who (M4300-52G) (Config-ipv4-acl)#permit tcp any host 169.254.100.100 eq https Invalid keyword. Currently supported TCP port keywords are bgp, domain, echo, ftp, ftpdata, http, pop2, pop3, smtp, telnet and www. Currently supported UDP port keywords are domain, echo, ntp, rip, snmp, tftp, time and who

Message 3 of 5
vill41n
Aspirant

Re: Security -> Access section of Admin GUI of M4300 does not exist as docs state.

Hi, just bumping this thread to check if there is a possibility the switch does not support secure protocols? Should I be looking into a replacement? 

Message 4 of 5
schumaku
Guru

Re: Security -> Access section of Admin GUI of M4300 does not exist as docs state.


@vill41n wrote:

...bumping this thread to check if there is a possibility the switch does not support secure protocols? ...



Check this thread and post please.

Message 5 of 5
Top Contributors
Discussion stats
  • 4 replies
  • 831 views
  • 0 kudos
  • 2 in conversation
Announcements