[j-nsp] rest api - limit ip sources

Aaron Gould aaron1 at gvtc.com
Wed Jan 22 16:00:06 EST 2020


Anyone know how to limit ip addresses *in subnet notation* that are able to
communicate with the rest api ?

 

 

rest api allowed-source - how to use subnet notation

 

 

{master:0}[edit]

agould at eng-lab-5048-2# set system services rest control allowed-sources
"123.123.0.64/26"

                                                                        ^

invalid input at '/26' in ip address '123.123.0.64/26' at '123.123.0.64/26'

 

{master:0}[edit]

agould at eng-lab-5048-2# set system services rest control allowed-sources
[123.123.0.64 /26]

error: invalid ip address or hostname: /26: /26

 

{master:0}[edit]

agould at eng-lab-5048-2# set system services rest control allowed-sources
[123.123.0.64/26]

error: invalid input at '/26' in ip address '123.123.0.64/26':
123.123.0.64/26

 

*** this works, but it's only one IP address, and I need to allow many more.

 

{master:0}[edit]

agould at eng-lab-5048-2# set system services rest control allowed-sources
123.123.0.80

 

{master:0}[edit]

 

 

 

-Aaron



More information about the juniper-nsp mailing list