Solved: thanks Richard for the help..

mudasir05 · ‎12-04-2014

Hello All,

I have a 2906 switch on which i have two user vlans from seperate departments.vlan2 and vlan3 with respective SVIs.

I have enabled telnet access as well on the switch.

my question is how to allow only users of vlan2 to telnet the switch and not the vlan 3 users.

i mean how many ways are there to implement this.

Thanks.

Richard Burts · ‎12-04-2014

access-list 50 permit 192.168.2.0 0.0.0.255

line vty 0 4

access-class 50 in

HTH

Rick

HTH

Rick

View solution in original post

Richard Burts · ‎12-04-2014

The usual way to limit telnet access is to configure a standard access list which permits the subnet of vlan2 and to apply the access list to the vty ports using access-class in. There are other approaches such as configuring ip access-group on the SVI which permit and deny telnet traffic to the switch. But the access-class is the simplest and best way to do it.

HTH

Rick

HTH

Rick

mudasir05 · ‎12-04-2014

thanks Richard for the reply,

could u plz give me example in the form of configuration,also let me know where to apply that..

Richard Burts · ‎12-04-2014

access-list 50 permit 192.168.2.0 0.0.0.255

line vty 0 4

access-class 50 in

HTH

Rick

HTH

Rick

mudasir05 · ‎12-04-2014

thanks Richard for the help...

it worked !!!

LImited Telnet access