04-03-2013 03:17 PM - edited 03-11-2019 06:23 PM
On an ASA Firewall, I am using 8.4(5). Is Telnet disabled by default? I only want to use SSH from an inside interface which I know how to configure using the AAA command and establishing an RSA Modulus key.
Thank you
Carlos
Solved! Go to Solution.
04-03-2013 03:21 PM
Hi,
To my understanding the Telnet isnt allowed by default.
But more importantly there is a very specific limitation related to its use that applys always.
You CANT use telnet on the "outside" interface with "security-level 0" UNLESS that Telnet connection is coming inside a VPN connection (VPN Client or L2L VPN)
This limitation is because unlike SSH, Telnet naturally aint secure by itself.
- Jouni
04-03-2013 03:21 PM
Telnet and SSH disabled by default.
So, rest assured, you can just enable SSH and telnet will remain disabled.
04-03-2013 03:28 PM
No problem,
Please mark the question as answered or ask more if needed
- Jouni
04-03-2013 03:21 PM
Hi,
To my understanding the Telnet isnt allowed by default.
But more importantly there is a very specific limitation related to its use that applys always.
You CANT use telnet on the "outside" interface with "security-level 0" UNLESS that Telnet connection is coming inside a VPN connection (VPN Client or L2L VPN)
This limitation is because unlike SSH, Telnet naturally aint secure by itself.
- Jouni
04-03-2013 03:24 PM
Jouni,
Thank you for the reply and the lesson. Much appreciated.
04-03-2013 03:28 PM
No problem,
Please mark the question as answered or ask more if needed
- Jouni
04-03-2013 03:21 PM
Telnet and SSH disabled by default.
So, rest assured, you can just enable SSH and telnet will remain disabled.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide