troubleshooting Question

SSH to Cisco ISR 1111 failing - need ideas

Avatar of amigan_99
amigan_99Flag for United States of America asked on
RoutersSSH / Telnet SoftwareCisco
11 Comments1 Solution90 ViewsLast Modified:
I am trying to connect to the outside interface of a Cisco ISR 1100 with SSH. If I do a remote session with the user at the site - I can SSH to the ISR at the inside address. But if I try to ssh to the external interface of the ISR I don't even get a login prompt. There is no ACL on the outside address. There is an ACL on vty 0 4 but it includes the source address I'm coming from and I even removed that ACL to prove the point temporarily.

Any other suggestions with regards to getting ssh to work on the outside interface as well as the inside? Is there a good debug that could help?

I have ip http secure-server in the config.

line vty 0 4
 access-class 5 in
 exec-timeout 30 0
 privilege level 15
 authorization exec SECURE
 logging synchronous
 login authentication SECURE
 length 0
 transport preferred ssh
 transport input ssh
line vty 5 15
 access-class 5 in
 exec-timeout 30 0
 privilege level 15
 authorization exec SECURE
 logging synchronous
 login authentication SECURE
 length 0
 transport input ssh
Join the community to see this answer!
Join our exclusive community to see this answer & millions of others.
Unlock 1 Answer and 11 Comments.
Join the Community
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 11 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros