02-23-2018 11:27 AM - edited 03-10-2019 01:14 PM
dears,
I have a 2960 XR switches with latest IOS on that but I don't see any control-plan command on the switch,
can anybody guide me the how we can control packets for control plan and data plane on 2960XR switches.
Is it the below command is in security risk rather than line vty 0 3 allowing 4 connection instead of 16
Line vty 0 15
exec-timeout 5
transport input ssh
thanks
Solved! Go to Solution.
02-23-2018 11:36 AM
Hi,
The control and data plane commands usually pertain to chassis-based switches and not so much to1ru small switches.
Is it the below command is in security risk rather than line vty 0 3 allowing 4 connection instead of 16
No, usually security is more concern about running SSH vs telnet and not the number of lines.
HTH
02-23-2018 11:36 AM
Hi,
The control and data plane commands usually pertain to chassis-based switches and not so much to1ru small switches.
Is it the below command is in security risk rather than line vty 0 3 allowing 4 connection instead of 16
No, usually security is more concern about running SSH vs telnet and not the number of lines.
HTH
02-23-2018 12:16 PM
Dear Reza,
NTP & Tacacs key password are they easily decrytable as it seem to me type 7, how we can secure them,
02-23-2018 12:41 PM
Tacacs should be internal to the network and not have access to the outside except for upgrades.
As for NTP, you can use ACL to allow access to only one or 2 devices.
HTH
02-23-2018 09:58 PM
Dear Reza,
Though the tacacs is internal to the network but the password can be easily seen how we can secure it,
Thanks.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide