CISCO controls VTY access

 

The CISCO control VTY access experiment topology is as follows:

Objective: To learn how to use TELNET for a specified source IP address

Lab requirements: From the FA0/0 port, only 192.168.2.100/24 can be telnet to the router.

First, configure network accessibility

--- System Configuration Dialog ---

 

Wocould you like to enter the initial configuration dialog? [Yes/no]: no

Router> en

Router # conf t

Enter configuration commands, one per line. End with CNTL/Z.

Router (config) # hostname r1

// Modify the vro name to r1

R1 (config) # no ip domain lookup

// Enter the wrong command to not query the Domain Name

R1 (config) # line console 0

// Enter the console interface configuration

R1 (config-line) # logging synchronous

// Synchronize logs

R1 (config-line) # exit

Configure the interface address:

R1 (config) # interface fastEthernet 0/0

// Enter the interface View

R1 (config-if) # ip address 192.168.2.1 255.255.255.0

// Configure the IP address

R1 (config-if) # no shutdown

// Enable the interface

Mar 2 06:24:23. 795: % LINK-3-UPDOWN: Interface FastEthernet0/0, changed state to up

// Configure the access control list:

R1 (config) # access-list 1 permit 192.168.2.100 0.0.0.0

// Configure the ACL list to allow only the IP address 192.168.2.100 to pass through

R1 (config) # line vty 0 4

// Enter the virtual console Configuration

R1 (config-line) # password cisco

// Configure the logon password for telnet

R1 (config-line) # login

// Allow Remote Login

R1 (config-line) # access-class 1 in

// Apply the access control list to the VTY import direction

 

 

 

Complete configuration and Test

 

192.168.2.99 cannot log on to the device. Change to 100 for testing.

 

Click Enter

 

Verification Successful, no problem !!!

 

For the first time, please confirm

This article is from the "still, always, always" blog