5 Replies Latest reply: Nov 26, 2008 7:55 AM by SAN Man
Here's what I found:
HTTP is only used for the distribution and installation of the Cisco Fabric Manager software. It is not used for communication between the Cisco Fabric Manager and Cisco MDS 9000 Family switches.
And I believe we can use the IP-ACL feature to disable HTTP and WWW, by denying port 143 and port 80.
There are various ways to secure the HTTP service but there is no way to completely stop the HTTP service without going to the Linux level. Here are possible things to consider:
1) Using Access Control Lists via the Access-List list command
2) Using HTTPs instead of HTTP
3) Creating a separate VLAN for limited hosts to the switch
4) Creating Firewall rules to block the use of HTTP