Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Disable Telnet

Hey guys, I upgraded my IOS this morning so that I can enable ssh server. I have ssh configured and am able to establish a connection via ssh. My question is, how do I disable telnet?

Thanks in advance,

Troy

3 REPLIES
New Member

Re: Disable Telnet

This seemed to work for me to disable telnet w/ ssh enabled.

conf t

line vty 0 4

transport input ssh

Can no longer telnet now.

Silver

Re: Disable Telnet

Also, if you are paranoid you could add an access-list to your VTY line only allowing SSH with an explicit "deny ip any any log" to log any other attempts to connect to the VTY by protocols other than SSH.

Rgds

Paddy

Hall of Fame Super Silver

Re: Disable Telnet

The access-class which is applied to the vty ports to limit access is almost always a standard access list which can not check for protocols. It is possible to use an extended access list in an access-class but it is quite tricky and some of the things that it takes to make it work are not intuuitively obvious.

I believe that the transport input ssh is the optimum solution for this.

HTH

Rick

1213
Views
0
Helpful
3
Replies