cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

Welcome to Cisco Firewalls Community


209
Views
0
Helpful
4
Replies

Simple Telnet question on ASA

On an ASA Firewall, I am using 8.4(5). Is Telnet disabled by default? I only want to use SSH from an inside interface which I know how to configure using the AAA command and establishing an RSA Modulus key.

Thank you

Carlos                  

3 ACCEPTED SOLUTIONS

Accepted Solutions
Mentor

Re: Simple Telnet question on ASA

Hi,

To my understanding the Telnet isnt allowed by default.

But more importantly there is a very specific limitation related to its use that applys always.

You CANT use telnet on the "outside" interface with "security-level 0" UNLESS that Telnet connection is coming inside a VPN connection (VPN  Client or L2L VPN)

This limitation is because unlike SSH, Telnet naturally aint secure by itself.

- Jouni

View solution in original post

Highlighted
Enthusiast

Simple Telnet question on ASA

Telnet and SSH disabled by default.

So, rest assured, you can just enable SSH and telnet will remain disabled.

View solution in original post

Mentor

Simple Telnet question on ASA

No problem,

Please mark the question as answered or ask more if needed

- Jouni

View solution in original post

4 REPLIES 4
Mentor

Re: Simple Telnet question on ASA

Hi,

To my understanding the Telnet isnt allowed by default.

But more importantly there is a very specific limitation related to its use that applys always.

You CANT use telnet on the "outside" interface with "security-level 0" UNLESS that Telnet connection is coming inside a VPN connection (VPN  Client or L2L VPN)

This limitation is because unlike SSH, Telnet naturally aint secure by itself.

- Jouni

View solution in original post

Simple Telnet question on ASA

Jouni,

Thank you for the reply and the lesson. Much appreciated.

Mentor

Simple Telnet question on ASA

No problem,

Please mark the question as answered or ask more if needed

- Jouni

View solution in original post

Highlighted
Enthusiast

Simple Telnet question on ASA

Telnet and SSH disabled by default.

So, rest assured, you can just enable SSH and telnet will remain disabled.

View solution in original post