Link to home
Start Free TrialLog in
Avatar of Maximus54
Maximus54

asked on

Can't disable Telnet on Cisco router for SSH

I have read every site on how to disable telnet on a cisco router and enable SSH but one part is not working for me. Telnet still works.

I started with generating the key and then stating SSH version 2:

username MY_NAME privilege 15 password PASSWORD
IP Domain-name mydomain.com
crypto key generate rsa
(with modulus 1024)
IP SSH version 2

line vty 0 4
transport input ssh
login local

...and yet TELNET still works, SSH works too now but I need Telnet not to work.
Avatar of greg ward
greg ward
Flag of United Kingdom of Great Britain and Northern Ireland image
can you do a show line and paste the output so we can see which line is connected.

Also

line vty 5 15
transport input ssh
login local


Greg
Avatar of lhcsd
lhcsd
Flag of United States of America image
I believe the line config command you're looking for is:

no transport input telnet
Avatar of Maximus54
Maximus54

ASKER

lhcsd: the No transport input is invalid

Here is my config Greg:

line vty 0 4
 exec-timeout 30 0
 logging synchronous
 login local
 history size 50
 transport input ssh
line vty 5 15
 no login
!
scheduler allocate 20000 1000
!
end
ASKER CERTIFIED SOLUTION
Avatar of greg ward
greg ward
Flag of United Kingdom of Great Britain and Northern Ireland image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of Maximus54
Maximus54

ASKER

deepdraw:
You got it, I was trying to disable vty Lines 5 to 15 and only allow 4 virtual terminal connections but I guess that No Login command made it so that they were still able to telnet instead of SSH to those lines. All I did was take out the No Login command and add the Transport input ssh for VTY 5 15 and now Telnet is disabled. Thanks.