Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Restrict telnet access

Hi,

I intend to restrict Telnet access to only a certain VLAN eg (VLAN10). How shd i go abt it? Right now, all VLAN hosts are able to telnet into the devices.

Thanks

-Steven-

1 ACCEPTED SOLUTION

Accepted Solutions
New Member

Re: Restrict telnet access

Here permit the VLAN 10 subenet.Implicitly remaining VLAN subnets will get deny.

---------------------------------------------------

Access-list 1 permit

line vty 0 4

access-class 1 in

---------------------------------------------------

Example: VLAN10 subnet is 10.0.0.x/24

access-list 1 permit 10.0.0.0 0.0.0.255

line vty 0 4

access-class 1 in

4 REPLIES
New Member

Re: Restrict telnet access

you can create and acl to permit only the subnet you want. and then use the access-class command on the vty line bind the acl to it.

access-list 1 permit any

line vty 0 4

access-class 1

hope that helps

Re: Restrict telnet access

Infact your access-list should look like this.

access-list 1 deny

access-list 1 permit any ----> permit all other vlans

line vty 0 4

access-class 1

New Member

Re: Restrict telnet access

Here permit the VLAN 10 subenet.Implicitly remaining VLAN subnets will get deny.

---------------------------------------------------

Access-list 1 permit

line vty 0 4

access-class 1 in

---------------------------------------------------

Example: VLAN10 subnet is 10.0.0.x/24

access-list 1 permit 10.0.0.0 0.0.0.255

line vty 0 4

access-class 1 in

Re: Restrict telnet access

Disregard my above post. I thought you wanted to deny access to a particular vlan.

Look at the last post from preddyi@yahoo.com, you can follow that.

95
Views
4
Helpful
4
Replies