Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
711
Views
4
Helpful
3
Replies

VTY - Extended ACL with destination address

cisco_lite
Level 1
Level 1

‎01-24-2009 08:21 AM - edited ‎03-06-2019 03:38 AM

Hi,

Is it possible to apply extended ACL to vty lines with specific destination address on Cat6500 12.2(33).

I have noticed that destination address is not effective even though it allows to configure.

Labels:
0 Helpful
3 Replies 3

Edison Ortiz
Hall of Fame
Hall of Fame

‎01-24-2009 10:55 AM

You are allowing/denying access to the VTY lines.

VTY lines have no IP address so what's the benefit to include the destination?

If you want to allow/deny telnet via some interfaces, you need to implement the ACL on those interfaces (source/destination) if needed.

HTH,

__

Edison.

cisco_lite
Level 1
Level 1
In response to Edison Ortiz

‎01-24-2009 12:40 PM

Thanks.

So does it mean, I would need to allow access at two points (in case of allowance). 1) permit source on the vty via access-class 2) permit source on specific destination interface (SVI) on the interface access-list.

Please correct me if I am wrong.

0 Helpful

Edison Ortiz
Hall of Fame
Hall of Fame
In response to cisco_lite

‎01-24-2009 04:13 PM

Correct.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card