Solved

cisco help

Posted on 2006-11-01
4
219 Views
Last Modified: 2010-04-10
what enterface do you set to enable passord protection on telnet sessions?
0
Comment
Question by:zenworksb
4 Comments
 
LVL 5

Accepted Solution

by:
renill earned 500 total points
ID: 17855962
its the virtual interface.

#line vty 0 4
#password <password?
#login


Thats It..

renill
0
 
LVL 10

Expert Comment

by:srgilani
ID: 17855984
do below steps

enable
 
config terminal

line vty 0 4

password  <password for telnet>

0
 
LVL 3

Expert Comment

by:tang_tzuchi
ID: 17856275
srgilani, you forgot to add in another "login" statement after the "line vty 0 4" statement. By adding this "login" statement, the router/switch should able to prompt for password when you telnet.

If you want to add the username and password togather for login, you should add another statement username xxx password xxxx.

regards.
0
 
LVL 11

Expert Comment

by:rafael_acc
ID: 17863965
a complete protection would be to also add a access-list so that telnet access is allowed from specific IPs only.

(config)# access-list 50 remark Protect telnet access
(config)# access-list 50 permit host <ip addr>
(config)# line vty 0 4
(config-line)# password <password>
(config-line)# login
(config-line)# access-class 50 in

or, instead of specifying a host, you can specify a range of ips:

(config)# access-list 50 remark Protect telnet access
(config)# access-list 50 permit <ipAddr> <wildcardMask>

Note that wildcardMask is not the same as subnet mask. Here is how to get it
Say for example that the subnet mask is 255.255.255.240

256 - 240 = 16
16 - 1 = 15
Replace all 255 with 0

The wildcard mask is 0.0.0.15



Cheers
0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
In this article, I am going to show you how to simulate a multi-site Lab environment on a single Hyper-V host. I use this method successfully in my own lab to simulate three fully routed global AD Sites on a Windows 10 Hyper-V host.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

920 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now