SSH and catos

Unanswered Question
Sep 3rd, 2008
User Badges:
  • Purple, 4500 points or more

We currently have all our catos accepting both SSH and telnet sessions . We need to turn off telnet now . For most except our distr. boxes we do not have any permit lists applied. What is required on catos to shut off telnet for both boxes that do currently have a permit list and ones that do not. To shut off on ones that do not have a list I would think you would enable a telnet ip permit command with no permit list applied but I'm not sure and cannot find docs to support this . any help appreciated.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 4 (1 ratings)
garytayl Wed, 09/03/2008 - 05:42
User Badges:
  • Silver, 250 points or more

If you do show ip permit and you have:

Telnet permit list disabled.

Then what you need to do is use:

set ip permit enable telnet

and since there are no permit entries for telnet then you will be blocking it for everyone.

If you need to allow some users to still be able to telnet then you can use:

"set ip permit telnet"

Hope it helps

glen.grant Wed, 09/03/2008 - 05:55
User Badges:
  • Purple, 4500 points or more

Thanks Gary, thats what I thought just wanted to verify . For ones that do have a permit list I assume you just do a clear ip permit for the telnet entries ?

garytayl Wed, 09/03/2008 - 09:55
User Badges:
  • Silver, 250 points or more

Correct. That's all you will need.


This Discussion