How to enable TELNET on ASA ?

Unanswered Question
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Jennifer Halim Wed, 09/08/2010 - 22:06
User Badges:
  • Cisco Employee,

Telnet is not supported on the lowest security level interface (which i believe would be your ASA external interface).

If you would like to telnet to the ASA external interface, you would need to remote VPN to the ASA first.

Alternatively, you can SSH to the ASA external interface directly (TCP/22) and you would need to configure the IP address where you will be SSH from on the ASA.


Hope that answers your question.

Jennifer Halim Thu, 09/09/2010 - 05:27
User Badges:
  • Cisco Employee,

As advised earlier, it is not possible to TELNET directly to the ASA outside interface. You can only SSH to the ASA outside interface.

If you would like to TELNET to ASA outside interface, you would need to VPN in first prior to initiating the telnet connection.

Nagaraja Thanthry Thu, 09/09/2010 - 05:27
User Badges:
  • Cisco Employee,

Hello Vinayak,


You can enable telnet on inside/DMZ interfaces but not on outside. For

inside/DMZ, use the following commands:


telnet 0.0.0.0 0.0.0.0 inside

telnet 0.0.0.0 0.0.0.0 dmz


This will enable telnet for all hosts on inside/dmz. If you want to be

specific, then


telnet aa.bb.cc.dd 255.255.255.255 inside

telnet xx.yy.zz.0 255.255.255.0 dmz


This will allow specific hosts/network telnet access.


Hope this helps.


Regards,


NT

mirober2 Thu, 09/09/2010 - 05:28
User Badges:
  • Cisco Employee,

Hi Vinayak,


Here is the configuration guide that shows how to setup Telnet access to the firewall:


http://www.cisco.com/en/US/docs/security/asa/asa82/configuration/guide/access_management.html#wp1054101


However, as halijenn noted, you cannot access the firewall via Telnet on the lowest security interface. For that, you'll need to use SSH (also described in the link above) or connect via VPN first.


Hope that helps.


-Mike

Actions

This Discussion