lurezero
asked on
Cisco 2811 telnet/ssh
Hello i need a reminder on how to configure telnet/ssh to remotely administer a router via its outside interface configured with a public IP...
is this all i need?
=========================
access-list 1 permit any any
line vty 0 4
access-class 1 in
privilege level 15
password xxxxxxxxxxxxx
login
transport input all
==========================
is this all i need?
=========================
access-list 1 permit any any
line vty 0 4
access-class 1 in
privilege level 15
password xxxxxxxxxxxxx
login
transport input all
==========================
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
You may want to re-evaluate applying acl permitting any any on a public interface?
Using an inside private IP should suffice. You just need to configure static NAT to that IP on port 23 (telnet),
I also would not recommend running a telnet session (unsecure - plain text transmission) over the internet.
Consider SSH (port 22)
Using an inside private IP should suffice. You just need to configure static NAT to that IP on port 23 (telnet),
I also would not recommend running a telnet session (unsecure - plain text transmission) over the internet.
Consider SSH (port 22)
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Not sure about "access-class 1 in" but other than that - yea, its all you need for basic telnet access.
You can also define authentication-groups etc to authenticate against radius servers etc.