Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
353
Views
0
Helpful
3
Replies

Telnet access within security context

danhosking
Level 1
Level 1

‎03-27-2006 01:49 PM - edited ‎03-09-2019 02:24 PM

We have enebaled telnet access on a security context and recive a telnet connection but no prompt. Is there anything special you need to do on a context to get telent working on a context. The device I am using to telnet from is a device within the same context network and both the firewall and host can ping the address I want to telnet to. Here is the telnet config we are using on the context.

telnet ##.##.##.##255.255.255.255 TEST

telnet timeout 5

passwd ########

Labels:
0 Helpful
3 Replies 3

Patrick Iseli
Level 7
Level 7

‎03-27-2006 02:12 PM

You need a < passwd > and the < enable password > and the < telnet > command to allow telnet management connections.

BUT ....

Telnet access is just working on a security level higher than 0. This means that it will not work from the outside interface. The PIX does not allow that, of course it would be unsecure to use a that protocol which is not encrypted.

Might be better to use ssh to do that !

example:

Generate a key:

hostname cisco-pix

domain-name example.com

ca generate rsa key 1024

show ca mypubkey rsa

Save ssh key:

ca save all

Allow incomming ssh connections:

ssh ip_address [netmask] [interface_name]

Reference:

http://www.cisco.com/en/US/products/sw/secursw/ps2120/products_configuration_guide_chapter09186a0080172797.html#wp1034079

sincerely

Patrick

0 Helpful

danhosking
Level 1
Level 1

‎03-28-2006 08:12 PM

We have enabled all the normal telnet configuration that you would use on non context cisco devices. However when we open a telnet session to a context to manage it, the telnet session connects and opens but nothing happens there is no propmt like normal. All enable and telnet passwords have been configured. Telnet has been enabled on the correct context interface. Do you need to do anything on the system configuration as well? Also is there any information on managing individual contexts via SNMP?

0 Helpful

Patrick Iseli
Level 7
Level 7
In response to danhosking

‎03-28-2006 08:38 PM

The FWSM allows Telnet connections to the FWSM for management purposes. You cannot use Telnet to the lowest security interface unless you use Telnet inside an IPSec tunnel.

You need a minimal config on the admin context with basic IP settings for at least one interface and a default route.

Might also be a good idea to check the state of the interfaces/vlans in the system context.

No have not used SNMP to manage the FWSM.

Take a look in the docs:

http://www.cisco.com/univercd/cc/td/doc/product/lan/cat6000/mod_icn/fwsm/fwsm_3_1/fwsm_cfg/mgacc_f.htm

http://www.cisco.com/univercd/cc/td/doc/product/lan/cat6000/mod_icn/fwsm/fwsm_3_1/index.htm

sincerely

Patrick

0 Helpful
Customers Also Viewed These Support Documents