Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Restric telnet access

I have MSFC with tons of vlans in them and I can telnet/ssh to any

vlan by typing telnet x.x.x.x. I want to be able to telnet to only

mgmt interface such as loopback0. What is the best way to achieve this?

Is it possible without the ACL?

5 REPLIES

Re: Restric telnet access

Take a look at Management Plane Protection.

http://www.cisco.com/en/US/docs/ios/12_4t/12_4t11/htsecmpp.html

You'll have to use the feature navigator to see if it's available on your particular switch(es).

Hope that helps.

Re: Restric telnet access

New Member

Re: Restric telnet access

Thank guys for the quick help. I assume the this will work even if I have Hybrid or native code on my 6500. (Of course MSFC will be IOS)

Re: Restric telnet access

MPP will be IOS only. Currently it is available in T code for routers, but you'll need to check for switches.

Re: Restric telnet access

Not necessarily, Since CoPP is a relatively new feature it is only available on the newer IOS releases. I don't believe CatOS supports this. What version is your MSFC running?

http://www.cisco.com/en/US/prod/collateral/iosswrel/ps6537/ps6586/ps6642/prod_white_paper0900aecd804fa16a.html

Mark

133
Views
0
Helpful
5
Replies