Link to home
Start Free TrialLog in
Avatar of mbroberson
mbroberson

asked on

Cisco Home lab setup for remote access

I have a cisco home lab I am trying to connect to the internet for remote access to be able to practice on when I am away from home. Currently I have a Cisco 2511 for the access server this is what I will be connecting to the internet somehow. I have highspeed internet access with dynamic ip address connected to a linksys cable/dsl router. I know I will be connecting the cisco router to the linksys and I know this can be done. I just need some assistance with the setup. Please advise.

Thanks,
Avatar of Imtiaz Hasham
Imtiaz Hasham
Flag of United Kingdom of Great Britain and Northern Ireland image
Allow port 3389 to a specific IP (A server you want to connect to) and use Remote Desktop with Windows XP (mstsc.exe) to connect to the server. For greater security, instead of port 3389, open port 1723 and connect to a server via VPN and use Remote Desktop (also known as Terminal Services) to connect to your house.

Note you can use www.no-ip.com's software to create a DNS entry for your home's IP address which will automatically update the IP on the DNS as it changes.
Avatar of mbroberson
mbroberson

ASKER

I am running DYNDNS on my home pc. Is there no way you can allow telnet access from the internet straight to the router by some means of port forwarding through my linksys or other means? I would assign the 2511 router a private 192.168.1.x address and port forward from the outside to this address via telnet, or so I thought this would be the means, is this way not possibe?

Thanks,
Avatar of thur6165
thur6165
You can forward port 23 to the address you give the cisco.  
Avatar of Imtiaz Hasham
Imtiaz Hasham
Flag of United Kingdom of Great Britain and Northern Ireland image
i am not too good with cisco routers but i would say use port forwarding and point port 23 to the internal ip address of the cisco firewall and then use telnet, however this is quite unsecure!
Avatar of Keith Alabaster
Keith Alabaster
Flag of United Kingdom of Great Britain and Northern Ireland image
Cisco PIX for example does not allow telent access to the external interface; I would anticipate the router doing the same. For these we normally would use ssh (port 22) to the interface and then access from there. Port 3389 RDP would be the simplest way to go with this.
ASKER CERTIFIED SOLUTION
Avatar of Les Moore
Les Moore
Flag of United States of America image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of Les Moore
Les Moore
Flag of United States of America image
Keith, FYI - Cisco routers don't have the same concept of 'inside' and 'outside' interfaces like a PIX and so don't have any restrictions on where/how you telnet to the box. You can telnet to/through any available interface.

Avatar of Keith Alabaster
Keith Alabaster
Flag of United Kingdom of Great Britain and Northern Ireland image
I stand corrected, Thanks Les.
Avatar of mbroberson
mbroberson

ASKER

What about the fact that I have a dynamic ip address?

Thanks,
Avatar of thur6165
thur6165
Dynamic ip, doesn't matter.  The way I work is by using RDP to connect to my desktop and then will telnet from there.  I can do alot more that way.  I forward port 3389 to the desktop.  And you don't have to worry about your password being sent out in plain text, telnet = plain text, rdp is encrypted.  
Avatar of Les Moore
Les Moore
Flag of United States of America image
Use a service like dyndns.org to register your dynamic IP, like mroberson.dyndns.org
then just telnet mroberson.dyndns.org