Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
785
Views
5
Helpful
1
Replies

ACL to deny telnet from any host on subnet

Deanmikawa
Level 1
Level 1

‎11-29-2017 03:41 PM - edited ‎03-12-2019 04:46 AM

Hello, I need to configure an ACL to deny telnet from any host on subnet 135.79.40.0/24 to anything on other subnets.  

I think I want to do something like this:

access-list 150 deny tcp host 135.79.40.0 0.0.0.255 any eq telnet

But I am not getting any results.... How can I configure my ACL to deny telnet requests from hosts on that subnet?

 

 

Attatched is a map of the network I am currently working with.  The goal is to deny telnet attempts from host E into router b and c, switch a and b.


Thank you,
Dean

Labels:
Preview file
57 KB
0 Helpful
1 Reply 1

Flavio Miranda
VIP
VIP

‎11-29-2017 06:25 PM - edited ‎11-29-2017 06:25 PM

Hi @Deanmikawa

 

 You ACL should be:

access-list 150 deny tcp 135.79.40.0 0.0.0.255 any eq telnet

 

But then you need to apply this on the switch A interface F 0/27

interface f 0/27

ip access-group 150 in

 

-If I helped you somehow, please, rate it as useful.-

Customers Also Viewed These Support Documents