[nsp] permit vty ssh, no telnet for some users ?

michael earls michael at michaelearls.com
Mon Apr 26 13:21:07 EDT 2004


This is my basic vty config:

!
access-list 101 permit tcp any eq 22 any
access-list 101 permit tcp any any eq 22
access-list 101 permit tcp host 192.168.1.10 any
!
line vty 0 4
access-group 101 in
!

This allows all to ssh traffic to the vty and only allows telnet/ssh from
192.168.1.10.

michael

On Mon, 26 Apr 2004 06:59:12 -0700, Voll, Scott wrote
> ACL on the vty interface.
> 
> -----Original Message-----
> From: matthew zeier [mailto:mrz at intelenet.net] 
> Sent: Saturday, April 24, 2004 6:14 PM
> To: cisco-nsp at puck.nether.net
> Subject: [nsp] permit vty ssh, no telnet for some users ?
> 
> Any clue on how to permit just one user to telnet to the router while
> making
> everyone else use ssh?  Aside from declaring it a policy.
> 
> --
> matthew zeier, Sr. Network Engineer  | "Nothing in life is to be feared.
> InteleNet Communications, Inc.       |  It is only to be understood."
> (949) 784-7904                       |       - Marie Curie
> 
> _______________________________________________
> cisco-nsp mailing list  cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
> 
> _______________________________________________
> cisco-nsp mailing list  cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/


Michael Earls

http://www.vermeer.org

PGP Info: KeyID 0x6B823F57 
Fingerprint C593 449E 1EA3 A984 E6B2 60AF 7FCC B27B 6B82 3F57

Send Secure Email:
https://secure.vermeer.org


More information about the cisco-nsp mailing list