07-04-2014 03:55 AM - edited 03-03-2019 07:29 AM
Hi all
I inherited a LAN with a Cisco C3560 switch and I cannot access it.
I found some configuration files of the switch on previous admin's computers. Appreciate if someone could "decode" it for me. Below is the text of one of them:
___________________________________
(config)#banner motd ^
(config)#service password-encryption
(config)#username secadmin privilege 15 secret **********
(config)#ntp server 192.168.20.203
(config)#aaa mew-model
(config)#aaa authentication enable default none
(config)#aaa authentication login CONS_AL none
(config)#aaa authentication login VTY_AL local
(config)#hostname RUTANWSW02
(config)#ip domain name DOMAIN.ORG
(config)#crypto key generate rsa modulus 2048
(config)#ip ssh version 2
(config)#line console 0
(config-line)#login authentication CONS_AL
(config-line)#exit
(config)#access-list 1 permit 10.15.245.1
(config)#line vty 0-15
(config-line)#login authentication VTY_AL
(config-line)#transport input ssh
(config-line)#access-class 1 in
(config-line)#exit
(config)#exit
#wr mem
________________
I tried to SSH it using putty with default port 22 and it says connection refused, does not even ask for credentials.
SSH to a Cisco wireless controller on the same network works just fine.
Thanks
07-04-2014 04:29 AM
Hi ,
You can do SSH only from host IP address 10.15.245.1 , due to ACL restriction on line vty 0 15
access-list 1 permit 10.15.245.1
HTH
Sandy
07-18-2014 04:31 AM
I changed my IP address to 10.15.245.1 and could not ping the Switch, neither could SSH.
Does it matter to which port of the switch I connect?
There are other config files stored in previous admin's computer under folders named as Chapter 2.1.1 scripts, Chapter 2.1.2 scripts, etc. I could share some information from there if necessary.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide