Facility to bind SSH and/or Web Server to a specific NIC
By default, both the SSH and web server processes in SSMC bind to the local bind address 0.0.0.0. This means that the ports 22 and 8443 are opened on all available network interfaces. Particularly, when SSMC is configured for a dual network (NIC) setup, it is important to isolate the web, web server management, and array management traffic.
SSMC 3.7 and later offers a flexible means to bind SSH and web server processes to any given specific network interface.
The network interfaces have a static naming convention within SSMC.
Prerequisites for SSH and Web server network binding
HPE recommends to configure SSMC with dual network interface and isolate the web server and SSH network traffic to specific separate NICs. This is also a standards security requirement. However, it is technically possible to bind both services to the same specified network interface.
Among the two available network interfaces, HPE recommends to isolate the web tier traffic (Web server) exclusively to one dedicated network interface, and bind the web server management traffic (SSH) along with the array network, which would be the other network interface.