Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

PIX 501 telnet

Hi,

How can i configure a remote client that can access my pix using telnet? i already issue the command

telnet 192.168.1.1 255.255.255.255 inside

telnet timeout 5

ssh timeout 5

terminal width 80

but when asking for the password, i cant get into the pix console.

Is theres something to add?

Thanks.

Mhel

5 REPLIES
New Member

Re: PIX 501 telnet

Hi,

Without the telnet password configured, you won't be able to telnet to the pix from inside.

The command is passwd under config mode.

Thanks

Tony

New Member

Re: PIX 501 telnet

Hi Tony,

Thanks for the info thats solve my problem. Next thing is, what if i add the command "202.136.160.4 255.255.255.255 inside" also to permit telnet, do i need to add the access-list to permit the telnet to my pix?

Thanks.

Mhel

New Member

Re: PIX 501 telnet

Mhel,

That will not do anything unless, somehow, 202.136.160.4 is on the inside of your PIX. What you should do is issue the command 'ssh 202.136.160.4 255.255.255.255 outside' and use ssh (encrypted shell/telnet) to connect to the PIX. This will also require the following to be done:

1) configure hostname 'hostname '

2) configure domain-name ' domain '

3) create keys 'crypto ca gen rsa key 768'

4) save keys 'ca save all'

You can then use a free ssh client (like putty) to connect to the PIX from the outside. This will not require any access-lists AFAIK.

New Member

Re: PIX 501 telnet

Hi ,

You don't need the access list to allow the telnet traffic destinate to the pix itself. By default , all the telnet traffic to the pix is deny.

You can't telnet to the pix from outside either.

In your case, I am assuming the host 202.136.160.4 is from inside. you need to add the command to allow the user telnet to pix.

telnet 202.136.160.4 255.255.255.255 inside

If this user 202.136.160.4 is from outside, that user can access to the pix directly by using PDM or ssh.

Thanks

Tony

Silver

Re: PIX 501 telnet

you configuration will only allow a connection from the host with the ip address of 192.168.1.1 on the inside interface. is this the host from which you tried to telnet to the pix?

2820
Views
0
Helpful
5
Replies
CreatePlease login to create content