Maximus54
asked on
Can't disable Telnet on Cisco router for SSH
I have read every site on how to disable telnet on a cisco router and enable SSH but one part is not working for me. Telnet still works.
I started with generating the key and then stating SSH version 2:
username MY_NAME privilege 15 password PASSWORD
IP Domain-name mydomain.com
crypto key generate rsa
(with modulus 1024)
IP SSH version 2
line vty 0 4
transport input ssh
login local
...and yet TELNET still works, SSH works too now but I need Telnet not to work.
I started with generating the key and then stating SSH version 2:
username MY_NAME privilege 15 password PASSWORD
IP Domain-name mydomain.com
crypto key generate rsa
(with modulus 1024)
IP SSH version 2
line vty 0 4
transport input ssh
login local
...and yet TELNET still works, SSH works too now but I need Telnet not to work.
I believe the line config command you're looking for is:
no transport input telnet
no transport input telnet
ASKER
lhcsd: the No transport input is invalid
Here is my config Greg:
line vty 0 4
exec-timeout 30 0
logging synchronous
login local
history size 50
transport input ssh
line vty 5 15
no login
!
scheduler allocate 20000 1000
!
end
Here is my config Greg:
line vty 0 4
exec-timeout 30 0
logging synchronous
login local
history size 50
transport input ssh
line vty 5 15
no login
!
scheduler allocate 20000 1000
!
end
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
deepdraw:
You got it, I was trying to disable vty Lines 5 to 15 and only allow 4 virtual terminal connections but I guess that No Login command made it so that they were still able to telnet instead of SSH to those lines. All I did was take out the No Login command and add the Transport input ssh for VTY 5 15 and now Telnet is disabled. Thanks.
You got it, I was trying to disable vty Lines 5 to 15 and only allow 4 virtual terminal connections but I guess that No Login command made it so that they were still able to telnet instead of SSH to those lines. All I did was take out the No Login command and add the Transport input ssh for VTY 5 15 and now Telnet is disabled. Thanks.
Also
line vty 5 15
transport input ssh
login local
Greg