Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
947
Views
0
Helpful
3
Replies

Nexus 3K VTY Access

G3000LEE
Level 1
Level 1

‎02-22-2021 03:19 AM

Hello all,

 

Can someone help me out and let me know what is the equivalent of the below is for a Nexus 3K (C3172QT).

I am familiar with IOS but very new to the Nexus platform and I'm currently migrating a 3750 to a Nexus.

 

ip access-list standard VTY_ACCESS
remark * Internal IP Address Range *
permit 10.2.11.2

permit 172.23.136.0 0.0.0.255

permit 192.168.0.0 0.0.0.255

deny any log

 

line vty 0 4
access-class VTY_ACCESS in
login local
transport input ssh

 

 

Thanks in advance.

Labels:
0 Helpful
3 Replies 3

balaji.bandi
Hall of Fame
Hall of Fame

‎02-22-2021 04:18 AM - edited ‎02-22-2021 04:18 AM

Nexus most cases handle by CoPP  - example (make sure you understand the syntax before you apply with exiting config.

 

 

ip access-list copp-system-acl-allow

10 permit tcp 172.23.136.0/xx any eq 22

20 permit tcp 192.168.0.0/xx any eq 22

ip access-list copp-system-acl-deny

 

You want to do your traditional way look at the example : ( also Limitations)

 

https://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus3000/sw/security/6x/b_Cisco_n3k_Security_Config_6x/b_Cisco_n3k_Security_Config_6x_chapter_0111.html

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

G3000LEE
Level 1
Level 1
In response to balaji.bandi

‎02-22-2021 04:34 AM

WIll the below work?

 

line vty
access-class VTY_ACCESS in

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to G3000LEE

‎02-22-2021 05:22 AM

sure - test and advise.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card