I have disabled ICMP & enabled only SSH, so that from the internet client, no one can ping my easy vpn router which is cisco 1751, only they can ssh, but if i do in this way & i am trying to login with the cisco vpn client, it is not logging, i get error message "remote peer not responding" where as if i enable ICMP, it is working fine,
the following are the configuration for disabling the ICMP
What are your requirements? Do you need internet access from inside hosts to outside or you only want to allow IPSec based VPN connections to erminate on the 1700 series router? Are you by any chance running the IOS firewall featureset and have the firewall enabled?
Cisco 1751 is a easy vpn server, i will accessing my office LAN via cisco vpn client, my requirement, i should not telnet the router, i should not ping the router, i should only able to ssh the router & ofcourse i should connect via cisco vpn client, IOS firewall is not enabled, so if i wanted to enabled firewall, what should i do, is that access-list alone enuf or firewall should also be required?
My only concern is that if you apply the access-list you might be affecting traffic for users on your office LAN in case they are using the 1751 for internet connectivity. If that is not the case then you can go ahead and apply the ACL. If you have the firewall featureset then it is better to enable it as it will automatically handle inside to outside communication. The following link has a sample configuration that you can modify according to your own needs:
This is actually a pretty cool feature, i didn't even know it existed until I was looking for a solution to advertise a subnet (prefix in BGP talk), only if a certain condition existed. This is exactly what conditional advertisements does
j ai une question j ai achete un routeur cisco 887VA-k9 , je le configuré avec la configuration ci- dessous
si je le lier avec mon pc portable sur l un de ses ports directement ça marche toute est bien ( la connexion internet + m...
Attached policy provides CLI access to the Cisco 4G router over text messaging. Two files are in the attached .tar file:
2. PDF with instructions on how to load and use the .tcl file.