Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
439
Views
0
Helpful
0
Replies

Reverse SSH - getting VTY access/user exec mode

Colleen Morrissey
Level 1
Level 1

‎03-31-2015 05:11 PM - edited ‎03-03-2019 07:48 AM

I have a config with reverse SSH configured for access to a bank of serial ports used for console connections.

The problem is if one of the lines/tty ports is in use and someone else tries to connect to the port in use they get logged in directly to router/user exec mode.

Is there a way to prevent this?

 

AS_1#show running-config
Building configuration...

Current configuration : 3493 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname AS_1
!
boot-start-marker
boot-end-marker
!
logging buffered 4096 debugging
enable secret 5 redacted
!
no aaa new-model
!
resource policy
!
memory-size iomem 15
no network-clock-participate slot 1
no network-clock-participate wic 0
ip subnet-zero
no ip routing
no ip cef
!
!
no ip dhcp use vrf connected
!
!
ip domain name cisco.local
ip ssh port 2001 rotary 1 32
ip ssh logging events
ip ssh version 2
!
!
!
username cisco password 0 redacted
username admin privilege 15 secret 5 redacted
!
!
!
interface FastEthernet0/0
 ip address X.X.X.X 255.255.254.0
 no ip route-cache
 duplex auto
 speed auto
!
interface FastEthernet0/1
 no ip address
 no ip route-cache
 shutdown
 duplex auto
 speed auto
!
ip default-gateway X.X.X.X
ip classless
!
ip http server
no ip http secure-server
!
!
!
control-plane
!
banner motd ^CC
************************************************
**                                            **
**        Authorized Access Only!             **
**                                            **
************************************************
^C
!
line con 0
 exec-timeout 15 0
 logging synchronous
 login local
line 33
 session-timeout 20
 login local
 rotary 1
 no exec
 transport input ssh
 transport output none
line 34
 login local
 rotary 2
 no exec
 transport input ssh
line 35
 login local
 rotary 3
 no exec
 transport input ssh
line 36
 login local
 rotary 4
 no exec
 transport input ssh
line 37
 login local
 rotary 5
 no exec
 transport input ssh
line 38
 login local
 rotary 6
 no exec
 transport input ssh
line 39
 login local
 rotary 7
 no exec
 transport input ssh
line 40   
 login local
 rotary 8
 no exec
 transport input ssh
line 41
 login local
 rotary 9
 no exec
 transport input ssh
line 42
 login local
 rotary 10
 no exec
 transport input ssh
line 43
 login local
 rotary 11
 no exec
 transport input ssh
line 44
 login local
 rotary 12
 no exec  
 transport input ssh
line 45
 login local
 rotary 13
 no exec
 transport input ssh
line 46
 login local
 rotary 14
 no exec
 transport input ssh
line 47
 login local
 rotary 15
 no exec
 transport input ssh
line 48
 login local
 rotary 16
 no exec
 transport input ssh
line 49
 login local
 rotary 17
 no exec
 transport input ssh
line 50
 login local
 rotary 18
 no exec
 transport input ssh
line 51
 login local
 rotary 19
 no exec
 transport input ssh
line 52
 login local
 rotary 20
 no exec
 transport input ssh
line 53
 login local
 rotary 21
 no exec
 transport input ssh
line 54
 login local
 rotary 22
 no exec
 transport input ssh
line 55
 login local
 rotary 23
 no exec
 transport input ssh
line 56
 login local
 rotary 24
 no exec
 transport input ssh
line 57
 login local
 rotary 25
 no exec
 transport input ssh
line 58
 login local
 rotary 26
 no exec
 transport input ssh
line 59
 login local
 rotary 27
 no exec
 transport input ssh
line 60
 login local
 rotary 28
 no exec
 transport input ssh
line 61
 login local
 rotary 29
 no exec
 transport input ssh
line 62
 login local
 rotary 30
 no exec
 transport input ssh
line 63   
 login local
 rotary 31
 no exec
 transport input ssh
line 64
 login local
 rotary 32
 no exec
 transport input ssh
line aux 0
line vty 0 4
 exec-timeout 15 0
 login local
 transport input ssh
line vty 5 15
 exec-timeout 15 0
 login local
 transport input ssh
!
!
end

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents