Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
9175
Views
0
Helpful
3
Replies

Re: ip telnet source-interface ....

Go to solution
InternetB
Level 1
Level 1

‎08-21-2008 12:52 AM - edited ‎03-06-2019 12:56 AM

Hi,

My question is that when I apply this command on R1 'ip telnet source-interface vlan 99' and from the neighbor router, R2 i still can establish telnet session to R1 by telnetting to R1 on vlan 100.

The configs on R1 looks as follows :-

!

R1

--

ip telnet source-interface vlan 99

!

int vlan 99

description Mgmt vlan

ip add 172.16.96.96.1 255.255.255.240

!

int vlan 100

description Inner Rail

ip add 172.16.96.113 255.255.255.240

!

line vty 0 15

login

!

My undertanding to this is that R2 will only be able to connect to R1, via vlan 99 only and not vlan 100. So why is it that I can access R1 via vlan 100 ?

Pls advice,

Cheers,

- InternetB -

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Jon Marshall
Hall of Fame
Hall of Fame
In response to InternetB

‎08-21-2008 01:25 AM

Well it can be useful if you need to lock down access to and from devices with access-lists for example. Often on a router you would use a loopback IP address as the telnet source interface.

Also when a router has multiple interfaces some of the IP addresses may not be routable throughout your network so you can pick one of the addresses that can be routed anywhere by specifying it with the source interface command.

Jon

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Jon Marshall
Hall of Fame
Hall of Fame

‎08-21-2008 01:15 AM

The "ip telnet source-interface" command is used to tell the router which IP address to use as the source IP address when telnetting FROM that router so if you were logged onto R1 and you telnetted to another device the source IP address would be 172.16.96.1 ie vlan 99 IP address.

But the command does not affect telnet TO R1.

Jon

0 Helpful

Go to solution
InternetB
Level 1
Level 1
In response to Jon Marshall

‎08-21-2008 01:20 AM

So which means it is used as the source interface for R1 to telnet to any other device right ?

Hmmmm ....What is the benefit of this ?

Cheers,

- InternetB -

0 Helpful

Go to solution
Jon Marshall
Hall of Fame
Hall of Fame
In response to InternetB

‎08-21-2008 01:25 AM

Well it can be useful if you need to lock down access to and from devices with access-lists for example. Often on a router you would use a loopback IP address as the telnet source interface.

Also when a router has multiple interfaces some of the IP addresses may not be routable throughout your network so you can pick one of the addresses that can be routed anywhere by specifying it with the source interface command.

Jon

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card