01-09-2020 08:04 AM
Hello, running into a weird issue with SSH into a router an ASR 4321. It's timing out from remote sites while it works from the local site. We can ping the router, so we know routing is there but ssh and telnet timeout. Not ACLs at all on the router. I captured and attached is what I see. Please assist. Router is running 15.5(2)s
01-09-2020 08:17 AM
- What if the remote sites impose restrictions for reaching your ASR trough SSH (such as fire-walling for both Internet and or Intranet traffic).
M.
01-09-2020 08:57 AM
There isn’t any. We’re able to ssh to the switch downstream from the router just fine.
01-09-2020 11:07 AM
Hello
@NETAD wrote:
There isn’t any. We’re able to ssh to the switch downstream from the router just fine.
So you can ssh/telnet from the rtr but not to the router correct?
sh management-interface
sh run | sec line
01-22-2020 06:44 PM
01-09-2020 08:58 AM
Check which protocols are allowed for the control plane.. You can allow only explicit protocols and sources to the control plane which does not use ACLs. Can you paste the following:
sh run | sec control-plane
01-22-2020 06:41 PM
07-22-2020 11:17 AM
curious if you ever figured this out? I'm having a similar issue where i can log into the router from the same segment in the Mgmt-vrf or local peerings. Although, I can't ssh to this router from remote networks but I can get into routers/switches from remote networks in the same segment.
07-23-2020 10:09 AM
If you would post a sanitized copy of your configuration we might be better able to identify the issue.
07-23-2020 10:17 AM
07-24-2020 07:39 AM
I will take a look at it when you get the config posted.
07-23-2020 10:16 AM
Still unable to. I will post my config and see if Rich can help.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide