Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

External Admin of 2950

I am new to the world of Cisco kit, so go easy on me if this is a simple question, but it has got me stumped.

I have a 2950 24 port switch. What I need to be able to do is configure the switch when I am outside of the network, via a firewall, either using telnet or http.

I have tried a couple of firewalls, a symantec firewall box and MS ISA server, but I am uanble to achieve my goal with either of them.

Any help would be appreciated.

5 REPLIES
Bronze

Re: External Admin of 2950

hi,

can you connect to the switch via telnet or http when you are inside the network ?

New Member

Re: External Admin of 2950

Hi skarundi,

Yes I can telnet and connect via http from anywhere on the internal network.

New Member

Re: External Admin of 2950

You can open up the necessary ports on the firewall, but I don't really recommend that. A better solution would be to setup a VPN connection to the internal network, then telnet to the switch.

However, if this is not possible, you need to open up the proper ports on the firewall, and then set up an ACL on both the firewall and the switch.

New Member

Re: External Admin of 2950

Hi gleithner,

Do you have a list of ports that are required to be opened, I am just opening the standard telnet (23) and http (80) ports on the firewall.

I have been trying some more and I now appear to get a connection but no login prompt it just sits there and then loses the connection. Could that be to do with the ACL on the switch as I haven't set up any.

Can you recommend and documentation on this?

New Member

Re: External Admin of 2950

Do what glethiner suggested. Opening up Telnet to the outside world is a major security problem. I would setup a VPN connection then telnet in. Keep in mind all telnet traffic is sent unencrypted. If it is a must, configure SSH on the switch for remote connectivity.

125
Views
0
Helpful
5
Replies