10-15-2011 01:41 AM - edited 02-21-2020 04:29 AM
Hi,
Can I block external access to my router from telnetting/sshing? I mean to say if telco gave me public ip address (either via static or dynamic) on my wan port. How can I restrict anyone to access my router by that public ip address. Thanks
10-15-2011 03:44 AM
Just create a access-list, which only allows known IP address to login to the device and apply it to line vty 0 4.
HTH,
Smitesh
10-15-2011 10:46 AM
what do you mean by known ip address?. I think it must be a single deny command (explicitly or implicitly) on vty terminals
10-15-2011 08:55 PM
Hi,
As for emergency situtation (for example, you want to access router, but you are at home) you might want to keep certain IP's allowed rather than blocking everything.
Regards,
Smitesh
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide