Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Access via RSP mgmt eth interfaces


I have created the following on a asr9k 4.3.1:

I connected both the RSP0 and RSP1's mgmt 0 Ethernet ports to a seperate L2 switch for Out of band management.

entered the following commands on the asr:

vrf MANRing

description Management network


interface MgmtEth0/RSP0/CPU0/0

vrf MANRing

ipv4 address


interface MgmtEth0/RSP1/CPU0/0

vrf MANRing

ipv4 address


ipv4 virtual address vrf MANRing

from a machine that is connected to the management switch I can ping all of the address successfully.

when I try to ssh to any of the IP's on the router.  I always get a message:

"the remote system refused the connection"

my terminal lines have an access list controlling the access but the logging doesnt show anything.

I cant find out where I need to look to allow SSH?

Is this even possible inside a VRF?


New Member

Access via RSP mgmt eth interfaces

Ok I managed to realise what was the error:

web searching revealed that this is error message is because the SSH is not listening.


I needed to also make sure that the ACL allowed access under the vty-pool and also enter the command:

ssh server vrf MANRing ipv4 access-list

and bingo.

CreatePlease login to create content