Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2098
Views
4
Helpful
4
Replies

Restrict telnet access

Go to solution
leowchongwei
Level 1
Level 1

‎11-08-2003 08:45 PM - edited ‎03-02-2019 11:34 AM

Hi,

I intend to restrict Telnet access to only a certain VLAN eg (VLAN10). How shd i go abt it? Right now, all VLAN hosts are able to telnet into the devices.

Thanks

-Steven-

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
preddyi
Level 3
Level 3
In response to thisisshanky

‎11-09-2003 09:31 PM

Here permit the VLAN 10 subenet.Implicitly remaining VLAN subnets will get deny.

---------------------------------------------------

Access-list 1 permit

line vty 0 4

access-class 1 in

---------------------------------------------------

Example: VLAN10 subnet is 10.0.0.x/24

access-list 1 permit 10.0.0.0 0.0.0.255

line vty 0 4

access-class 1 in

View solution in original post

0 Helpful
4 Replies 4

Go to solution
m.matteson
Level 2
Level 2

‎11-08-2003 08:54 PM

you can create and acl to permit only the subnet you want. and then use the access-class command on the vty line bind the acl to it.

access-list 1 permit any

line vty 0 4

access-class 1

hope that helps

0 Helpful

Go to solution
thisisshanky
Level 11
Level 11
In response to m.matteson

‎11-09-2003 09:32 AM

Infact your access-list should look like this.

access-list 1 deny

access-list 1 permit any ----> permit all other vlans

line vty 0 4

access-class 1

Sankar Nair
UC Solutions Architect
Pacific Northwest | CDW
CCIE Collaboration #17135 Emeritus
0 Helpful

Go to solution
preddyi
Level 3
Level 3
In response to thisisshanky

‎11-09-2003 09:31 PM

Here permit the VLAN 10 subenet.Implicitly remaining VLAN subnets will get deny.

---------------------------------------------------

Access-list 1 permit

line vty 0 4

access-class 1 in

---------------------------------------------------

Example: VLAN10 subnet is 10.0.0.x/24

access-list 1 permit 10.0.0.0 0.0.0.255

line vty 0 4

access-class 1 in

0 Helpful

Go to solution
thisisshanky
Level 11
Level 11
In response to thisisshanky

‎11-09-2003 09:50 PM

Disregard my above post. I thought you wanted to deny access to a particular vlan.

Look at the last post from preddyi@yahoo.com, you can follow that.

Sankar Nair
UC Solutions Architect
Pacific Northwest | CDW
CCIE Collaboration #17135 Emeritus
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents