Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

Purple

SSH question 6509 hybrid

If we turn off telnet on both the layer 2 side catos and the layer 3 msf side will we still be able to session up to the layer 3 side from the layer 2 side . I do not see any kind of SSH command on the catos side nor is it part of the "session" command . Is this just considered an internal session and will get to the msf ok even though we have telnet disabled ? I always thought the session command was a telnet command internally. I will probably try it on a lab box to see but I was just wondering if anyone knew ?

6 REPLIES
Hall of Fame Super Silver

Re: SSH question 6509 hybrid

Glen

I do not have an authoritative answer and testing in the lab is certainly what you need to do. But I would be very surprised if turning off telnet impacted the ability to session from the switch side to the MSFC. It does feel a bit like a telnet connection but I believe that it is a separate kind of connection.

When you do test it please post back so that we know the real answer.

HTH

Rick

Hall of Fame Super Bronze

Re: SSH question 6509 hybrid

About 5 years ago, someone at GroupStudy asked the same question:

http://www.groupstudy.com/archives/ccielab/200306/msg01005.html

Not sure if has changed since then, doubt it..

HTH,

__

Edison.

Purple

Re: SSH question 6509 hybrid

Thanks Edison ,not really what I wanted to hear and I'll still test it out . You would think there would be something code wise that would take SSH into account.

Purple

Re: SSH question 6509 hybrid

Here's the definitive answer , the answer is if you just enable SSH on both the mls layer2 side and the msf layer 3 side and you restrict telnet with the transport input SSH command , it does break your ability to session into the layer 3 side from the catos side. Not happy about that , means if you if have to work on both sides you have to have 2 separate sessions going to to the work . if you try to session you will get this message,

Console> (enable) ses 15

Trying Router-15...

session: Unable to tunnel to Router-15 (57)

Hall of Fame Super Silver

Re: SSH question 6509 hybrid

Glen

Thanks for testing and providing a definitive answer. Rated as deserved.

HTH

Rick

Hall of Fame Super Bronze

Re: SSH question 6509 hybrid

Glen,

Pretty much identical from the posting at GroupStudy 5 years ago :)

No much has changed on good old CatOS ...

Good job testing this not-well documented feature.

150
Views
5
Helpful
6
Replies