Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Change ssh default port 22

Hello,

Is-it possible to change de default port 22 for ssh connection in live VTY in a switch or router? The security department here change the port ssh 22 for fort 14555 for all ssh connection on the servers. They want to do the same thing for Cisco equipment.

Is-it possible?

  • Other Security Subjects
3 REPLIES
Silver

Re: Change ssh default port 22

I think it is not possible to change the ssh default port in cisco equipments but you can simulate with the help of NAT. For more info please use this document.

http://www.cisco.com/en/US/tech/tk648/tk361/technologies_tech_note09186a0080094e77.shtml#topic8

New Member

Re: Change ssh default port 22

Did you try

ip ssh port [new port] rotary 1

line vty ...

rotary 1

Regards,

Mladen

remark: this opens the new port for ssh connections, but the default (22) is still open.

New Member

Re: Change ssh default port 22

you can read about the "rotary" feature here:

http://www.cisco.com/en/US/tech/tk583/tk617/technologies_q_and_a_item09186a0080267e0f.shtml

It forwards the new port to the specified line. If you forward to a vty line with ssh enabled you can connect with ssh using the new port.

Still you have to use access-list to deny the default ssh port (22).

Regards,

Mladen

399
Views
0
Helpful
3
Replies