cisco help

what enterface do you set to enable passord protection on telnet sessions?
zenworksbAsked:
Who is Participating?
 
renillConnect With a Mentor Commented:
its the virtual interface.

#line vty 0 4
#password <password?
#login


Thats It..

renill
0
 
srgilaniCommented:
do below steps

enable
 
config terminal

line vty 0 4

password  <password for telnet>

0
 
tang_tzuchiCommented:
srgilani, you forgot to add in another "login" statement after the "line vty 0 4" statement. By adding this "login" statement, the router/switch should able to prompt for password when you telnet.

If you want to add the username and password togather for login, you should add another statement username xxx password xxxx.

regards.
0
 
rafael_accCommented:
a complete protection would be to also add a access-list so that telnet access is allowed from specific IPs only.

(config)# access-list 50 remark Protect telnet access
(config)# access-list 50 permit host <ip addr>
(config)# line vty 0 4
(config-line)# password <password>
(config-line)# login
(config-line)# access-class 50 in

or, instead of specifying a host, you can specify a range of ips:

(config)# access-list 50 remark Protect telnet access
(config)# access-list 50 permit <ipAddr> <wildcardMask>

Note that wildcardMask is not the same as subnet mask. Here is how to get it
Say for example that the subnet mask is 255.255.255.240

256 - 240 = 16
16 - 1 = 15
Replace all 255 with 0

The wildcard mask is 0.0.0.15



Cheers
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.