09-29-2009 01:01 PM - last edited on 03-25-2019 04:08 PM by ciscomoderator
I have MSFC with tons of vlans in them and I can telnet/ssh to any
vlan by typing telnet x.x.x.x. I want to be able to telnet to only
mgmt interface such as loopback0. What is the best way to achieve this?
Is it possible without the ACL?
09-29-2009 01:05 PM
Take a look at Management Plane Protection.
http://www.cisco.com/en/US/docs/ios/12_4t/12_4t11/htsecmpp.html
You'll have to use the feature navigator to see if it's available on your particular switch(es).
Hope that helps.
09-29-2009 01:11 PM
Nawaz,
Please see the following discussion that that shows how to configure CoPP in the manner that you wish to configure.
HTH,
Mark
09-29-2009 01:18 PM
Thank guys for the quick help. I assume the this will work even if I have Hybrid or native code on my 6500. (Of course MSFC will be IOS)
09-29-2009 01:28 PM
MPP will be IOS only. Currently it is available in T code for routers, but you'll need to check for switches.
09-29-2009 01:31 PM
Not necessarily, Since CoPP is a relatively new feature it is only available on the newer IOS releases. I don't believe CatOS supports this. What version is your MSFC running?
Mark
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide