Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ACL telnet

I have an end-router which is connected with a network which i don't control it. I want to secure the telnet access from that network to the rest of my network so i creat an extended ACL :

access-list 101 deny tcp any any eq telnet

access-list 101 permit tcp any any

access-list 101 permit ip any any.

I put the access list in the interface like that:

int s0/0

access-group 101 in

Did i do that right? Do i need to permit also ip and tcp . Is there a better way?

Thanks

moses

1 ACCEPTED SOLUTION

Accepted Solutions

Re: ACL telnet

Hi,

the following is enough, permit ip any any does it for you, it means any thing.

access-list 101 deny tcp any any eq telnet

access-list 101 permit ip any any

HTH,

Mohammed Mahmoud.

1 REPLY

Re: ACL telnet

Hi,

the following is enough, permit ip any any does it for you, it means any thing.

access-list 101 deny tcp any any eq telnet

access-list 101 permit ip any any

HTH,

Mohammed Mahmoud.

283
Views
0
Helpful
1
Replies
CreatePlease login to create content