Only the L3 VLAN interfaces/loopback interface/routed interface/sub-interface in the default VRF can be set as the in-band management ports. If an L3 interface has been set as an in-band management port, it can only stay in the default VRF, but not any user-defined VRFs.
By default, the user cannot remotely log in and manage the switch through an L3 VLAN interface, a loopback interface, a routed interface or a sub-interface. You need to enable the in-band management function by using the following commands to perform the SSH, TELNET, SNMP and HTTP services through the L3 interface in the default VRF:
set system inband vlan-interface <vlan-interface-name>
set system inband loopback <ip-address>
set system inband routed-interface <routed-interface-name>
Example
The following commands set the L3 VLAN interface VLAN400 in the default VRF as the in-band management port.
admin@XorPlus# set interface gigabit-ethernet te-1/1/2 family ethernet-switching native-vlan-id 40 0 admin@XorPlus# set vlans vlan-id 400 l3-interface vlan400 admin@XorPlus# set l3-interface vlan-interface vlan400 address 192.168.1.1 prefix-length 24 admin@Xorplus# set system inband vlan-interface vlan400 admin@Xorplus# commit
The following commands set the loopback interface IP in the default VRF as the in-band management IP.
admin@Xorplus# set l3-interface loopback lo address 1.1.1.1 prefix-length 32 admin@Xorplus# set system inband loopback 192.168.10.1 admin@Xorplus# commit
The following commands set the routed interface rif-ge3 in the default VRF as the in-band management port.
admin@XorPlus# set vlans reserved-vlan 80-90 admin@XorPlus# set interface gigabit-ethernet te-1/1/3 routed-interface enable true admin@XorPlus# set interface gigabit-ethernet te-1/1/3 routed-interface name rif-te3 admin@XorPlus# set l3-interface routed-interface rif-te3 admin@XorPlus# set l3-interface routed-interface rif-te3 address 172.168.10.10 prefix-length 24 admin@Xorplus# set system inband routed-interface rif-te3 admin@Xorplus# commit
In-band management provides a method of access to the switch even if the Ethernet0/1 interface is down.