|
|
|
|
| Author |
|
|
Registered
|
It's disabled by default. If you turned it on at some point just ditch the vty line.
__________________
ßrandon |
||
03-13-2006, 07:42 PM
|
|
|
Registered
|
In short:
You need to keep the telnet access enabled, but need to apply an access-list list against it permitting only the local LAN addresses. access-list 8 permit 192.168.1.0 0.0.0.255 line vty 0 4 access-class 8 in The above would only allow vty access from local lan 192.168.1.0. Dave
__________________
Make sure to check out my balls in the Pelican Parts Catalog! 917 inspired shift knobs. '84 Targa - Arena Red - AX #104 '07 Toyota Camry Hybrid - Yes, I'm that guy... '01 Toyota Corolla - Urban Camouflage - SOLD |
||
|
03-13-2006, 10:23 PM
|
|
|
Back in the saddle again
Join Date: Oct 2001
Location: Central TX west of Houston
Posts: 55,844
|
cool to see other Cisco guys around.
__________________
Steve '08 Boxster RS60 Spyder #0099/1960 - never named a car before, but this is Charlotte. '88 targa  SOLD 2004 - gone but not forgotten
|
||
|
03-14-2006, 05:35 AM
|
|
|
Too big to fail
|
Wow, this brings back memories - I haven't done any IOS stuff in 5 years or so!
__________________
"You go to the track with the Porsche you have, not the Porsche you wish you had." '03 E46 M3 '57 356A Various VWs |
||
|
03-14-2006, 06:00 AM
|
|
|
Registered
Join Date: Mar 2003
Posts: 10,318
|
Wonder why cisco still uses telnet instead of ssh with keys?
Makes me think I outght to do a second AS as networking this time and focus on the cisco...
__________________
“IN MY EXPERIENCE, SUSAN, WITHIN THEIR HEADS TOO MANY HUMANS SPEND A LOT OF TIME IN THE MIDDLE OF WARS THAT HAPPENED CENTURIES AGO.” |
||
|
03-14-2006, 07:42 AM
|
|
|
Back in the saddle again
Join Date: Oct 2001
Location: Central TX west of Houston
Posts: 55,844
|
Quote:
I used to work on the Cisco TAC. Lots of people that manage networking equipment, whether it be routers, switches, firewalls, etc..., have no clue. Lots of them were the PC guy and then they bought a router which automatically made them the router guy. They know just enough to get it to work or maybe not even. Not so much these days, but in days gone by you'd be amazed how many people used "cisco", "cmaker", "password", whatever for their telnet passwords.
__________________
Steve '08 Boxster RS60 Spyder #0099/1960 - never named a car before, but this is Charlotte. '88 targa SOLD 2004 - gone but not forgotten
|
||
|
03-14-2006, 07:52 AM
|
|
|
|
Registered
|
Quote:
Dave
__________________
Make sure to check out my balls in the Pelican Parts Catalog! 917 inspired shift knobs. '84 Targa - Arena Red - AX #104 '07 Toyota Camry Hybrid - Yes, I'm that guy... '01 Toyota Corolla - Urban Camouflage - SOLD |
||
|
03-14-2006, 11:18 PM
|
|
|
Banned
Join Date: Apr 2005
Location: Columbus, OH
Posts: 18,162
|
LOL. I guess I better read this. I just re-took my CCNA. It had expired a few years back.
|
||
|
06-06-2006, 06:51 PM
|
|
|
Registered
Join Date: Mar 2002
Location: My House
Posts: 5,345
|
ACcessl list the VTY with an access-list that only pertains to your internal IP addresses.
http://www.cisco.com/en/US/products/sw/iosswrel/ps1835/products_command_reference_chapter09186a00800873c8 .html#wp1017389 I think 12.1 and higher support SSH; in my experience with it on the lower end routers I've had a lot of flakey connections where telnet was rock solid; no lost connections. Your 3600 should handle SSH just fine though.
__________________
-The Mikester I heart Boobies |
||
|
06-06-2006, 09:25 PM
|
|
 |
| Thread Tools | |
| Rate This Thread | |
|
|
1987 Porsche 911 Carerra
1984 Porsche Targa 3.2L
