cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
3386
Views
0
Helpful
3
Replies

No Access VTY

choylee
Level 1
Level 1

Hello,

I cannot explain this behavior of my router.

The r02 configuration seems to be basic but I cannot connect in telnet or SSH mode (I can just in console mode ).

In addition, I have the same configuration on my router r01 and it works. It's very strange.

Model : Cisco router 7206

FastEthernet1/0r02#show vers | include IOS
Cisco IOS Software, 7200 Software (C7200-ADVENTERPRISEK9-M), Version 12.2(33)SRE, RELEASE SOFTWARE (fc1)

###########################
r02#show run interface fa1/0
Building configuration...
Current configuration : 241 bytes
!
interface FastEthernet1/0
 description LAN
 ip address 10.100.0.253 255.255.254.0
 ip nat inside
 duplex full
 no standby redirect
 standby version 2
 standby 1 ip 10.100.0.254
 standby 1 preempt
 standby 1 name redundancy
end



line vty 0 4
 exec-timeout 0 0
 password 7 0815495A08170A044553
 login local
 transport input telnet ssh
 transport output telnet ssh
!

###########################

r02#show ssh
Connection      Version Encryption      State                   Username
0               0.0        -            Open                    -
1               0.0        -            Open                    -
3               0.0        -            Open                    -
4               0.0        -            Open                    -
5               0.0        -            Open                    -
6               0.0        -            Open                    -
7               0.0        -            Open                    -
8               0.0        -            Open                    -
9               0.0        -            Open                    -
10              0.0        -            Open                    -
11              0.0        -            Open                    -
12              0.0        -            Open                    -
13              0.0        -            Open                    -
14              0.0        -            Open                    -
15              0.0        -            Open                    -
Connection Version Mode Encryption  Hmac         State                 Username
2          2.0      -       -          -         Version checked       -



###########################

Test from LAN#ping 10.100.0.253
PING 10.100.0.253 (10.100.0.253) 56(84) bytes of data.
64 bytes from 10.100.0.253: icmp_seq=1 ttl=255 time=5.74 ms
64 bytes from 10.100.0.253: icmp_seq=2 ttl=255 time=0.607 ms
64 bytes from 10.100.0.253: icmp_seq=3 ttl=255 time=0.457 ms
--- 10.100.0.253 ping statistics ---
3 packets transmitted, 3 received, 0% packet loss, time 2005ms
rtt min/avg/max/mdev = 0.457/2.270/5.747/2.459 ms

Test from LAN# ssh root@10.100.0.253
ssh: connect to host 10.100.0.253 port 22: Connection refused

Test from LAN# telnet 10.100.0.253
Trying 10.100.0.253...
telnet: Unable to connect to remote host: Connection refused
 


Thanks

 

1 Accepted Solution

Accepted Solutions

Hi,

you have configured "exec-timeout 0 0", so a session will never time out automatically.

Perhaps all the lines are just active, you can check this with "show line", a leftmost asterisk (*) indicates that the line is in use.

Have you tried a "clear line vty <line-number>" for all the lines?

HTH

Rolf

View solution in original post

3 Replies 3

Poonam Garg
Level 3
Level 3

Hi,

Please check on your router r02 whether the domain name is configured and crypto key has been generated on it.

For ssh to work your router must have the configuration of domain name and crypto key and username password must be configured.

# ip domain-name xyz

# crypto key generate rsa modulus 1024 label abc

# username aaa password bbb priv 15

 

HTH

"Please rate helpful posts"

Hi,

you have configured "exec-timeout 0 0", so a session will never time out automatically.

Perhaps all the lines are just active, you can check this with "show line", a leftmost asterisk (*) indicates that the line is in use.

Have you tried a "clear line vty <line-number>" for all the lines?

HTH

Rolf

 

Hi,

Yes, I was be able to get back the remote access with this command : "clear line vty <line-number>" .

I now have : exec-timeout 5 0

 

 

 

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: