How to use " ip identd" to check the incoming user ?
I configurate the command "ip identd" in routers. How to get the information from the port (113) in routers. I had used the access-list to check the telnet session between two routers but could n't view anything.
Re: How to use " ip identd" to check the incoming user ?
What exactly are you trying to do? "Show users" to see who is logged in.
If you want info on the ident protocol see RFC 1413: http://www.cis.ohio-state.edu/cgi-bin/rfc/rfc1413.html . With identification support, you can connect a TCP port on a host, issue a simple text string to request information, and receive a simple text-string reply. There isn't alot you can configure with it, just enable/disable. Make sure the request is sent properly.
If you want to see who logs in and what they do you can try two options: local priviledge or tacacs+ AAA.
priviledge exec level 2 ping
priviledge exec level 2 show config
priveldge exec level 3 debug ip rip
enable secret level 2 ...
enable secret level 3 ...
Log in on one of those level: enable 2 or enable 3
This way you can see the username that logs in, and limit what they do.
tacacs-server host 18.104.22.168
tacacs-server key ...
aaa authorization exec tacacs+
aaa accounting ...
Set up a tacacs+ server.
This way you see who logs in, limit what they do, and have audit records of what they did.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...