Subnet of my router

Unanswered Question
Oct 2nd, 2010
User Badges:
  • Gold, 750 points or more

Hi,


This questions came from our CSC Facebook community.


http://www.facebook.com/CiscoSupportCommunity


Arshad Ameen hi all
i need u r help

i wan to disable telnet connection to my router from all other subnets otherthan the subnet of my router

...i have already ip subnet-zero running

mmi snmp-timeout 180
ip subnet-zeroip cef
pls help

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Giuseppe Larosa Sat, 10/02/2010 - 09:48
User Badges:
  • Super Silver, 17500 points or more
  • Hall of Fame,

    Founding Member

Hello,


a starndard ACL invoked as access-class in in line vty 0 5 configuration can do this


example:


access-list 22 permit 10.10.20.0 0.0.0..0.255



line vty 0 5

access-class 22 in


Hope to help

Giuseppe

Sherwin Clarke Sat, 10/02/2010 - 17:16
User Badges:

Doesn't that command disables telnet completely on the VTY lines 0 to 5?  Can a user speciy what telnet line to connec to??


He might be better off specifying what subnet a user can telnet from and apply it to the appropriate interface

paolo bevilacqua Sun, 10/03/2010 - 10:07
User Badges:
  • Super Gold, 25000 points or more
  • Hall of Fame,

    Founding Member

rynex1234 wrote:


Doesn't that command disables telnet completely on the VTY lines 0 to 5?

No, it does not do that.


Can a user speciy what telnet line to connec to??



No, as it would not make sense.




He might be better off specifying what subnet a user can telnet from and apply it to the appropriate interface

Actually, that is exactly what the command "access-class", correctly suggested by Giuseppe (and that I have rated), does,

Actions

This Discussion