Secure Access Cisco 2950/Help with Commands

Hello Experts,

I would like to Secure my newly configured 2950 Switch and wanted to lock it down. The needs are:

(1)Limit the remote access to One Ip address
(2) Password Protect the Telnet console/Potentiall use SSH
(3)Encrypt As much as the passwords as possible

Thanks in Advance experts
AtomicsteaksAsked:
Who is Participating?
 
amadjeskiConnect With a Mentor Commented:
For all of this you will need to make sure you have an IOS image with CRYPTO

(1)Limit the remote access to One Ip address
(2) Password Protect the Telnet console/Potentiall use SSH

Create an access list such as:

ip access-list extended VTYAccess
     permit tcp host 172.45.15.2 any eq 22 log (where 172.45.15.2 is the host you want to access from)
     deny ip any any

Then apply this to the VTY interfaces and specify SSH only

line vty 0 4 (or 0 15 to hit all of them)
    transport input ssh
    access-class VTYAccess in



(3)Encrypt As much as the passwords as possible

Using SSH you will need to set up encryption on the switch

If you need any further explanation please let me know.

crpto key gen rsa

select the strength and it will create the key
0
 
pseudocyberCommented:
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.