Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3698
Views
0
Helpful
5
Replies

PIX 501 telnet

mhel
Level 1
Level 1

‎08-27-2003 08:17 PM - edited ‎02-20-2020 10:57 PM

Hi,

How can i configure a remote client that can access my pix using telnet? i already issue the command

telnet 192.168.1.1 255.255.255.255 inside

telnet timeout 5

ssh timeout 5

terminal width 80

but when asking for the password, i cant get into the pix console.

Is theres something to add?

Thanks.

Mhel

0 Helpful
5 Replies 5

tohuang
Level 1
Level 1

‎08-27-2003 10:54 PM

Hi,

Without the telnet password configured, you won't be able to telnet to the pix from inside.

The command is passwd under config mode.

Thanks

Tony

0 Helpful

mhel
Level 1
Level 1
In response to tohuang

‎08-31-2003 06:41 PM

Hi Tony,

Thanks for the info thats solve my problem. Next thing is, what if i add the command "202.136.160.4 255.255.255.255 inside" also to permit telnet, do i need to add the access-list to permit the telnet to my pix?

Thanks.

Mhel

0 Helpful

snursten
Level 1
Level 1
In response to mhel

‎09-01-2003 03:07 AM

Mhel,

That will not do anything unless, somehow, 202.136.160.4 is on the inside of your PIX. What you should do is issue the command 'ssh 202.136.160.4 255.255.255.255 outside' and use ssh (encrypted shell/telnet) to connect to the PIX. This will also require the following to be done:

1) configure hostname 'hostname '

2) configure domain-name ' domain '

3) create keys 'crypto ca gen rsa key 768'

4) save keys 'ca save all'

You can then use a free ssh client (like putty) to connect to the PIX from the outside. This will not require any access-lists AFAIK.

0 Helpful

tohuang
Level 1
Level 1
In response to mhel

‎09-01-2003 12:01 PM

Hi ,

You don't need the access list to allow the telnet traffic destinate to the pix itself. By default , all the telnet traffic to the pix is deny.

You can't telnet to the pix from outside either.

In your case, I am assuming the host 202.136.160.4 is from inside. you need to add the command to allow the user telnet to pix.

telnet 202.136.160.4 255.255.255.255 inside

If this user 202.136.160.4 is from outside, that user can access to the pix directly by using PDM or ssh.

Thanks

Tony

0 Helpful

mostiguy
Level 6
Level 6

‎08-28-2003 05:20 AM

you configuration will only allow a connection from the host with the ip address of 192.168.1.1 on the inside interface. is this the host from which you tried to telnet to the pix?

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card