Are you saying that you have attempted to telnet into 192.168.2.1 and that it does not work? If that is the case then can you confirm that you do have IP connectivity to that address? (can you ping to that address from the host where you are attempting telnet?)
Note that your config applies access-class 10 on your console and on the vty. And access list 10 restricts what source addresses can telnet:
access-list 10 permit 192.168.3.0 0.0.0.255
access-list 10 permit 192.168.2.0 0.0.0.255
access-list 10 permit 192.168.1.0 0.0.0.255
access-list 10 permit 192.168.252.0 0.0.0.255
I am surprised in looking at this that your video VLAN (152) is included as a source for telnet but that your management VLAN (153) is not included. What that a typo?
In addition to Rick's comments, I don't see you are running any static route or routing protocol. Do you have connectivity from this router to the rest of the network? or you missed part of the config?
Thanks, ( sorry didnt try 2.1) yes 2.1 does work so it looks like the acl, if thats the case then how is 253 working as the (typo) would have stoped it form getting through. i will have another look at the config to see why 252 is allowed telent.
The access list 10 used by the access class on the vty would limit what source addresses would be accepted in telnet. It does not restrict which interfaces could be used as destination addresses for telnet. So perhaps we need to ask you to go back and provide some details about what source addresses to what destination addresses do work and which do not work.
And given the distinction about restricting source addresses and not destination it is easier to understand why telnet to 192.168.253.129 does work - as long as the telnet is coming from an accepted source address.
Also in re-reading this thread I see that I made an error when I referred to 252 as the Video subnet. Clearly the Video subnet is 152 and not 252. I suspect that the 252 in the access list might be a typo and will be interested in what you can report to us about this.
Hi everyone, I would like to thank you in advance for any help you can provide a newcomer like myself!
Im studying the 100-105 book by Odom and am currently on the topic of Port security. I purchased a used 2960 and I'm trying to follow a...
While deploying a number of 18xx/2802/3802 model access points (APs), which run AP-COS as their operating platform. It can be observed on some occasions that while many of their access points were able to join the fabric WLC withou...