02-10-2008 01:42 PM - edited 03-05-2019 09:03 PM
If we turn off telnet on both the layer 2 side catos and the layer 3 msf side will we still be able to session up to the layer 3 side from the layer 2 side . I do not see any kind of SSH command on the catos side nor is it part of the "session" command . Is this just considered an internal session and will get to the msf ok even though we have telnet disabled ? I always thought the session command was a telnet command internally. I will probably try it on a lab box to see but I was just wondering if anyone knew ?
02-10-2008 07:15 PM
Glen
I do not have an authoritative answer and testing in the lab is certainly what you need to do. But I would be very surprised if turning off telnet impacted the ability to session from the switch side to the MSFC. It does feel a bit like a telnet connection but I believe that it is a separate kind of connection.
When you do test it please post back so that we know the real answer.
HTH
Rick
02-10-2008 08:52 PM
About 5 years ago, someone at GroupStudy asked the same question:
http://www.groupstudy.com/archives/ccielab/200306/msg01005.html
Not sure if has changed since then, doubt it..
HTH,
__
Edison.
02-11-2008 04:33 AM
Thanks Edison ,not really what I wanted to hear and I'll still test it out . You would think there would be something code wise that would take SSH into account.
02-11-2008 05:04 AM
Here's the definitive answer , the answer is if you just enable SSH on both the mls layer2 side and the msf layer 3 side and you restrict telnet with the transport input SSH command , it does break your ability to session into the layer 3 side from the catos side. Not happy about that , means if you if have to work on both sides you have to have 2 separate sessions going to to the work . if you try to session you will get this message,
Console> (enable) ses 15
Trying Router-15...
session: Unable to tunnel to Router-15 (57)
02-11-2008 05:24 AM
Glen
Thanks for testing and providing a definitive answer. Rated as deserved.
HTH
Rick
02-11-2008 07:41 AM
Glen,
Pretty much identical from the posting at GroupStudy 5 years ago :)
No much has changed on good old CatOS ...
Good job testing this not-well documented feature.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide