The management-plane isolate enable command isolates service interfaces from the management interface.
The undo management-plane isolate enable command enables service interfaces to access the management interface.
By default, service interfaces can access the management interface.
Usage Scenario
To prevent attacks from service networks to the management network, run the management-plane isolate enable command to isolate service interfaces from the management interface. After a service interface receives packets destined for the management interface, it cannot send the packets to the management interface. The management interface, however, can still access service interfaces. This enhances network security.