Cisco Community
English
Register
Community will be in Read-only Mode from April 11 at 11:00 PM PT to Monday April 12 at 9:00 PM PT - READ DETAILS HERE
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
987
Views
0
Helpful
0
Replies
Daniel Anderson
Beginner
Beginner
‎01-22-2019 04:18 AM
‎01-22-2019 04:18 AM

Nexus5548 - Login Block - Odd ACL/VTY behavior

We're running 5548 Switches within our Data Centre, with login block configured as per the lines below. 

 

login block-for 900 attempts 5 within 30
login quiet-mode access-class 15

 

We're also running another ACL, which is configured on the VTY lines on each Switch. What we're seeing is that when quiet mode feature of login block is activated, ACL 15 is applied to the VTY, as expected. Now at the end of the 900 seconds of the quiet mode period, ACL 15 is removed from the VTY, but the original ACL is not re-applied, which from a security perspective is not great.

 

Appreciate we're running quite an old version of code - 7.2(0)N1(1) - But has anyone seen any similar such similar behavior? I'm planning to upgrade some Switches to try and resolve, as I expect it to be some sort of bug behavior but wanted to see if others had experienced similar issues in the past

 

Thanks

Labels:
0 Helpful
0 REPLIES 0
Latest Contents
Living on the Edge with the Secure Cats
Created by almuench on 04-07-2021 01:34 PM
0
0
0
0
The cat's out of the bag! In October 2020, Cisco announced the Next Generation of Enterprising Routing Platforms: the Catalyst 8000 Edge Platforms Family including the Catalyst 8200, Catalyst 8300, Catalyst 8500, and Catalyst 8000V. The new family of Cats... view more
Community Live- Smart Licensing Using Policy (Routing) – A S...
Created by Cisco Moderador on 04-06-2021 06:31 AM
0
0
0
0
Community Live- Smart Licensing Using Policy (Routing) – A Simplified Licensing Approach (Live event -  Tuesday, 18 May, 2021 at 9:00 am Pacific/ 1:00 pm Eastern / 7:00 pm Paris) This event will have place on Tuesday 18th, May 2021 at 9:00 hrs PDT&nb... view more
Networking and Data Center Products Overview (Spring 2021)
Created by Kelli Glass on 03-31-2021 12:46 PM
0
0
0
0
Welcome to the overview guide that covers the latest in Cisco Networking and Data Center innovations and new product introductions. You'll find information on Intent Based Networking updates, special promotions and free trials, as well as exclusive upcom... view more
**New Episode** Cisco Champion Radio: S8|E13 Build Your IT F...
Created by aalesna on 03-30-2021 02:52 PM
0
0
0
0
Listen: https://smarturl.it/CCRS8E13 99% of organizations use certifications to make hiring decisions. The reason is simple: Cisco certifications bring valuable, measurable rewards to certified IT professionals and the organizations that employ them.... view more
Cisco AI Endpoint Analytics - Deployment Guide
Created by kthiruve on 03-29-2021 06:15 PM
0
5
0
5
Cisco AI Endpoint Analytics – Deployment guide This deployment guide is meant for Cisco AI Endpoint Analytics adoption for customers, partners and everyone focusing on Endpoint Visibility and to how achieve it with Endpoint Analytics. It has sections that... view more
Content for Community-Ad