Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
416
Views
0
Helpful
2
Replies

Telnet in menu system on specific vty

lauren
Level 1
Level 1

‎09-24-2002 07:13 AM - edited ‎03-02-2019 01:35 AM

Hi

I need to create a menu system to run various basic admin commands on an AS5300. I need to do this without altering the normal telnet in vty access though. Ive got two plans to do this.

1) use the highest number vty to run a menu system, allowing people to telnet into that specifically. Now people should be able to telnet in by adding the line number to 2000 as far as i can see, but as of yet Ive had no success with it. I can reverse telnet to the aux port but not the vtys. Does anyone have any ideas?

The second problem with that is that if the AS5300 is upgraded with more lines, the line numbers of the vtys will change, and therefore so will the ip port numbers which wouldn't be good. Is there a way of running a vty on a specific IP port?

2) My other idea was to use the protocol translation feature to spawn off a vty. Im thinking either

translate tcp <myrouter> port <myspecificport> autocommand menu <mymenu>

that sucks as theres no password, so maybe

translate tcp <myrouter> port <myspecificport> virtual-template <mytemplate>

and create a vty template in the same fashion as above. I dont know if either of these will work yet though, and lets face it - using protocol translation to bring up a menu would be a monumentally hideous hack if it did work.

Does anyone have any ideas?

At the moment Im pursuing idea 1. I have a 2503 that im trying things out on, vty 4 is line 6 and is configured as

line vty 4

login

password mypassword

autocommand menu mymenu

When I try

telnet myrouter 2006

I get no connection, yet I can do

telnet myrouter 2001

to connect to the aux port.

Help!

Lauren

Labels:
0 Helpful
2 Replies 2

mljohnson
Level 4
Level 4

‎09-24-2002 10:55 AM

You can't reverse telnet to virtual VTY ports.

Your best and easiest approach is to define an autocommand with a generic ADMIN username; something like:

username ADMIN autocommand MENU

username ADMIN password cisco

ADMIN users which connect to the cisco will automatically get the menu; other users (who have password priviledges) that connect to the cisco will get the regular prompt. You could also do this via AAA, if you are using an external AAA server.

0 Helpful

thisisshanky
Level 11
Level 11
In response to mljohnson

‎09-24-2002 04:40 PM

TO add to above, VTY line assignment is decided by the router, we cannot decide which line number is assigned.

Sankar Nair
UC Solutions Architect
Pacific Northwest | CDW
CCIE Collaboration #17135 Emeritus
0 Helpful
Customers Also Viewed These Support Documents