Solved: Re: NAM access restrictions

richard.whitlock · ‎09-18-2002

I want to disable the ability to Telnet directly into the NAM. Sessioning in from the CAT is the only avenue I want available, or a way to use TACACs for NAM console logins.

rmushtaq · ‎09-18-2002

Session into the NAM and then use the command 'exsession off' which will disbale external telnet access to the NAM. However, you can setup TACACS for login to the NAM Web Interface.

Here are the command details:

exsession [on | off]

Controls whether external Telnet sessions are accepted by the NAM from outside the switch. The default is set to off. If the exsession command is set to off, you can only Telnet to the NAM from the supervisor engine on the switch. If the exsession command is set to on, new Telnet requests from any valid IP address are accepted. This command will not drop any open sessions. This command can be used by the root account only.

View solution in original post

rmushtaq · ‎09-18-2002

Session into the NAM and then use the command 'exsession off' which will disbale external telnet access to the NAM. However, you can setup TACACS for login to the NAM Web Interface.

Here are the command details:

exsession [on | off]

Controls whether external Telnet sessions are accepted by the NAM from outside the switch. The default is set to off. If the exsession command is set to off, you can only Telnet to the NAM from the supervisor engine on the switch. If the exsession command is set to on, new Telnet requests from any valid IP address are accepted. This command will not drop any open sessions. This command can be used by the root account only.