Cisco Community
English
Register
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
Join Customer Connection to register!
23005
Views
20
Helpful
9
Replies
Highlighted
saroj pradhan
Beginner
Beginner
‎11-22-2012 04:10 AM
‎11-22-2012 04:10 AM

Cisco 2921 Router with the ip http access class command

Hi,

the cisco 2921 Router has a default  ip hhtp  access class command  found  in it. Just  i  changed the default  IP to the new ip  i will use.

The Router is accessable  from the LAN only  but  not from the internet  configured the Public ip . I think this is due to the standard access list 23 .

Please advice  how will i access the Router from the Internet using the Public IP.

Thanks,

Saroj Pradhan

Labels:
0 Helpful
Reply
9 REPLIES 9
Highlighted
johnlloyd_13
Engager
Engager
‎11-22-2012 06:46 AM
‎11-22-2012 06:46 AM

hi saroj,

please post your 'show run' output.

Reply
Highlighted
Rahul Kukreja
Beginner
Beginner
‎11-22-2012 08:46 AM
‎11-22-2012 08:46 AM 

The ACL used with the following command is used to restrict the GUI Access to router (like CCP) 
Also this ACL is the standard ACL, so will only match the source ip address not the destination.

ip http access-class 23

http://www.cisco.com/en/US/docs/ios/12_1/configfun/command/reference/frd1005.html#wp1020068

Check if the same ACL is applied in the vty lines -

line vty 0 4

access-class 23 in

Remove this command and check or put "permit any" at the end of ACL and check.

- HTH

  Rahul

0 Helpful
Reply
Highlighted
saroj pradhan
Beginner
Beginner
In response to Rahul Kukreja
‎11-23-2012 05:42 PM
‎11-23-2012 05:42 PM

As  i am unable  to access the Router from the internet due the ip http  access class command  need help to remove the command  from the routeer. please advice.

Thanks,

Saroj

0 Helpful
Reply
Highlighted
Rahul Kukreja
Beginner
Beginner
In response to saroj pradhan
‎11-23-2012 11:51 PM
‎11-23-2012 11:51 PM

Please attach your running confugration and let us via what means you are accessing the Router from Internet and the ip address of router (example - telnet, ssh, CCP etc)

ip http access-class is used to restrict the GUI access access of the router and if you just want to go ahead and remove this without any further troubleshooting, here is the command -

Router#conf t

Router(config)#no ip http access-class 23

- HTH

Rahul

Reply
Highlighted
cadet alain
Advisor
Advisor
In response to saroj pradhan
‎11-24-2012 07:24 AM
‎11-24-2012 07:24 AM

Hi,

You don't have line vty access with ssh/telnet ?

Regards.

Alain

Don't forget to rate helpful posts.

Don't forget to rate helpful posts.
Reply
Highlighted
joelgooding
Beginner
Beginner
In response to cadet alain
‎11-24-2012 11:16 AM
‎11-24-2012 11:16 AM

hello,

Just a tip here, if you are going to be making changes on a remote router that you are not sure will result in disconnecting your session, save the config and use the reload command to reboot the device if the session disconnects:

(config)# reload in

Joel

_______________________________
Please rate helpful posts and answered questions!

Joel _______________________________ Please rate helpful posts and answered questions!
Reply
Highlighted
Roman Vicent Magararu
Beginner
Beginner
In response to joelgooding
‎08-29-2013 11:25 PM
‎08-29-2013 11:25 PM

Hi,

if you are using internet, the first thing you must do is to ping the router

your router must have  default route to the internet

0 Helpful
Reply
Highlighted
Parvesh Paliwal
Participant
Participant
In response to joelgooding
‎08-29-2013 11:28 PM
‎08-29-2013 11:28 PM

@joelgooding

good tip....!!

0 Helpful
Reply
Highlighted
Ricardo Ochoa
Beginner
Beginner
‎09-25-2015 11:16 AM
‎09-25-2015 11:16 AM

Hello, please post the next commands:

 

sh run int "WAN Interface"

sh access-list

sh ip route

sh running-config | section line vty

 

0 Helpful
Reply
Latest Contents
CATALYST TUESDAY - MARCH 9 - Enterprise Campus BGP EVPN Solu...
Created by Scott Hodgdon on 03-04-2021 09:23 AM
0
5
0
5
Join us for the next Catalyst Tuesday session on March 9 - Enterprise Campus BGP EVPN Solution Overview : This session will cover the Enterprise BGP EVPN Solution in the Campus using the Catalyst 9K platform. We will discuss the major drivers behind ... view more
Community Live Event- ISR1100X-4G and ISR1100X-6G Platform O...
Created by Cisco Moderador on 03-02-2021 05:23 AM
1
0
1
0
Community Live- ISR1100X-4G and ISR1100X-6G Platform Overview and Architecture (Live event -  Tuesday, 23 March, 2021 at 10:00 am Pacific/ 1:00 pm Eastern / 7:00 pm Paris)- This event will have place on Tuesday 23rd, March 2021 at 10:00 hrs PDT&... view more
Cisco Secure Network Access Bridges the Gap
Created by Kelli Glass on 02-26-2021 04:19 PM
0
0
0
0
Cisco Secure Network Access is helping IT to bridge the gap between what is essential to the business and what the network delivers and to build the next-generation campus network for an unplugged and uninterrupted experience. Learn more about how these w... view more
Community Live Video - New Additions to the Catalyst 8000 Fa...
Created by Cisco Moderador on 02-24-2021 08:49 AM
0
0
0
0
(view in My Videos) Community Live- New Additions to the Catalyst 8000 Family (Live event -  Tuesday, 23 February, 2021 at 10:00 am Pacific/ 1:00 pm Eastern / 7:00 pm Paris)- This event had place on Tuesday 23rd, February 2021 at 10:00 hrs PDT... view more
New Additions to the Catalyst 8000 Family- FAQ
Created by Cisco Moderador on 02-24-2021 07:23 AM
0
0
0
0
This event had place on Tuesday 23rd, February 2021 at 10hrs PDT  Introduction Designed for an intent-based network, the Cisco Catalyst 8000 Edge Platforms family offers best-in-class networking and security combined. The platforms, available in b... view more
Content for Community-Ad