cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
5338
Views
0
Helpful
2
Replies

Disable telnet access to UC500 WAN

jcarter
Level 4
Level 4

What is the easiest and/or best way to disable telnet and SSH access to the WAN port on the UC500?

2 Replies 2

Steven DiStefano
VIP Alumni
VIP Alumni

The Faste 0/0 WAN Interface has an ACL put there by CCA, usually 104.

While it allows VPN connections (if you set up the VPN Server on the UC500 - also using CCA) it blocks TELNET and SSH by not explicitly permiting those ports 23 and 22, so they fall to the deny any any (last ACL statement).

So maybe nothing to do if using CCA.  If not using CCA, build one, but build it as ACL 150 or higher so if you ever do connect CCA, it will respect it.

If you are using CCA, the presence or absence of pinholes in the firewall for telnet/ssh is controlled by the Configure > Device Properties > Device Access screen.  As Steve says, these default to no access.

Cheers,

Dave.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: