?
Solved

cisco help

Posted on 2006-11-01
4
Medium Priority
?
230 Views
Last Modified: 2010-04-10
what enterface do you set to enable passord protection on telnet sessions?
0
Comment
Question by:zenworksb
4 Comments
 
LVL 5

Accepted Solution

by:
renill earned 2000 total points
ID: 17855962
its the virtual interface.

#line vty 0 4
#password <password?
#login


Thats It..

renill
0
 
LVL 10

Expert Comment

by:srgilani
ID: 17855984
do below steps

enable
 
config terminal

line vty 0 4

password  <password for telnet>

0
 
LVL 3

Expert Comment

by:tang_tzuchi
ID: 17856275
srgilani, you forgot to add in another "login" statement after the "line vty 0 4" statement. By adding this "login" statement, the router/switch should able to prompt for password when you telnet.

If you want to add the username and password togather for login, you should add another statement username xxx password xxxx.

regards.
0
 
LVL 11

Expert Comment

by:rafael_acc
ID: 17863965
a complete protection would be to also add a access-list so that telnet access is allowed from specific IPs only.

(config)# access-list 50 remark Protect telnet access
(config)# access-list 50 permit host <ip addr>
(config)# line vty 0 4
(config-line)# password <password>
(config-line)# login
(config-line)# access-class 50 in

or, instead of specifying a host, you can specify a range of ips:

(config)# access-list 50 remark Protect telnet access
(config)# access-list 50 permit <ipAddr> <wildcardMask>

Note that wildcardMask is not the same as subnet mask. Here is how to get it
Say for example that the subnet mask is 255.255.255.240

256 - 240 = 16
16 - 1 = 15
Replace all 255 with 0

The wildcard mask is 0.0.0.15



Cheers
0

Featured Post

Receive 1:1 tech help

Solve your biggest tech problems alongside global tech experts with 1:1 help.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article is a collection of issues that people face from time to time and possible solutions to those issues. I hope you enjoy reading it.
This article will show how Aten was able to supply easy management and control for Artear's video walls and wide range display configurations of their newsroom.
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…

621 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question