The CISCO control VTY access experiment topology is as follows:
Objective: To learn how to use TELNET for a specified source IP address
Lab requirements: From the FA0/0 port, only 192.168.2.100/24 can be telnet to the router.
First, configure network accessibility
--- System Configuration Dialog ---
Wocould you like to enter the initial configuration dialog? [Yes/no]: no
Router> en
Router # conf t
Enter configuration commands, one per line. End with CNTL/Z.
Router (config) # hostname r1
// Modify the vro name to r1
R1 (config) # no ip domain lookup
// Enter the wrong command to not query the Domain Name
R1 (config) # line console 0
// Enter the console interface configuration
R1 (config-line) # logging synchronous
// Synchronize logs
R1 (config-line) # exit
Configure the interface address:
R1 (config) # interface fastEthernet 0/0
// Enter the interface View
R1 (config-if) # ip address 192.168.2.1 255.255.255.0
// Configure the IP address
R1 (config-if) # no shutdown
// Enable the interface
Mar 2 06:24:23. 795: % LINK-3-UPDOWN: Interface FastEthernet0/0, changed state to up
// Configure the access control list:
R1 (config) # access-list 1 permit 192.168.2.100 0.0.0.0
// Configure the ACL list to allow only the IP address 192.168.2.100 to pass through
R1 (config) # line vty 0 4
// Enter the virtual console Configuration
R1 (config-line) # password cisco
// Configure the logon password for telnet
R1 (config-line) # login
// Allow Remote Login
R1 (config-line) # access-class 1 in
// Apply the access control list to the VTY import direction
Complete configuration and Test
192.168.2.99 cannot log on to the device. Change to 100 for testing.
Click Enter
Verification Successful, no problem !!!
For the first time, please confirm
This article is from the "still, always, always" blog