Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1508
Views
0
Helpful
7
Replies

Telnet into Cisco Pix

kjanakiraman
Level 1
Level 1

‎04-29-2002 03:53 AM - edited ‎02-20-2020 10:02 PM

Hi,

I have Cisco pix 515 with ios 5.1(2). I had installed it long back and everything was working fine. Now Suddenly i could not telnet into it. I checked the configuration and i have give telnet access to the inside network and the idle timeout is 15 minutes, but there is no harm to the general functionality. now i have to hyperterm for any changes in the configuration.

My inside netwrok is 192.168.x.x and 10.x.x.x.

telnet 192.168.x.x 255.255.255.0 inside

telnet 10.x.x.x 255.0.0.0 inside

These are the commands i have given for telnet access before and the same did not change. What may be the problem. Can some one Advice.

Thanks in Advance

0 Helpful
7 Replies 7

gspencer
Level 1
Level 1

‎04-29-2002 05:05 AM

Hi,

Is there an access-list on applied to your inside interface? If so, are you allowing hosts telnet access to PIX. Try pinging your inside interface from the PC that you are trying to telnet from. Hope this lead you in the right direction to solving this problem.

0 Helpful

kjanakiraman
Level 1
Level 1
In response to gspencer

‎04-29-2002 06:37 AM

Hi,

I have access-list for blocking some chat sites. That was configured very long back and after which also i was able to telnet. The access-list was applied to the inside interface. I am able to ping the inside interface of the Pix firewall.

0 Helpful

ccoutts
Level 1
Level 1

‎04-29-2002 07:20 AM

Hello,

You could try specifying specfic hosts which are allowed to telnet to the PIX, using the following format, for example:

telnet 10.X.X.X 255.255.255.255 inside

Maybe, you could also check if there are any telnet sessions on the PIX which are preventing you connecting (a sh who from enable mode should show you this) - you can then kill any offending sessions. In addition, although you've probably checked this, make sure you are actually using port 23 for telnet, and not something else like ssh.

0 Helpful

g.rodegari
Level 1
Level 1

‎04-29-2002 08:17 AM

You can telnet the pix on the inside interface only from an ip address of the same network.

The telnet command has higer priority over any configured access-list.

Bye

Graz.

0 Helpful

kjanakiraman
Level 1
Level 1
In response to g.rodegari

‎04-30-2002 03:20 AM

I checked all the things. I typed sh who but nothing is connected. The access has been given to the entire class for telneting from inside. I checked with my backup configuration but there was no change in the configuration and all are fine. What might have went wrong?

Thanks in Advance

0 Helpful

JOHN NIKOLATOS
Level 3
Level 3

‎04-30-2002 03:35 PM

This may seem trivial but did you reset your pix?

There may be an ARP issue. I have seen it do weird things. Either "clear arp" on firewall, machine and switch or turn power off on all of them and back on.

This will happen if you changed IP addresses and the switch or something gets confused.

0 Helpful

kjanakiraman
Level 1
Level 1
In response to JOHN NIKOLATOS

‎05-03-2002 08:35 PM

Thanks a lot. The Reboot did it.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card