Matt,
You cannot telnet to the outside interface of the pix.
Couple of options:
1. Telnet to an internal host from outside and then telnet to the inside interface of the pix from that host.
2. You can do SSH to the outside interface of the pix
3. Telnet to the outside interface but the traffic has to be part of an IPSEC Traffic.
In your case, I think SSH would be good fit since it is simple to configure and provides encryption.
In order to have ssh access you need to have atleast VPN-DES enabled on your pix, please
go ahead and do a ?sh version? and make sure you at least VPN-DES enabled
Licensed Features:
Failover: Enabled
VPN-DES: Enabled
VPN-3DES-AES: Enabled
Maximum Interfaces: 6
Cut-through Proxy: Enabled
Guards: Enabled
URL-filtering: Enabled
Inside Hosts: Unlimited
Throughput: Unlimited
IKE peers: Unlimited
If by chance you don?t have at least VPN-DES enabled, please send the complete capture of
your sh version and send it to licensing@cisco.com, and request to have it enabled.
CONFIGURATION:
Set a domain name, for exmaple
domain-name cisco.com
Configure a telnet password, which I assume you already do
Pix(config)#passwd xxxx
You need to generate a ssh key, to generate the key you need to type the following
lines:
pix(config)#ca generate rsa key 1024
pix(config)#ssh 172.16.1.1 255.255.255.255 outside
pix(config)#ca save all
I use Putty Client for SSH and works fine. You can go to google and do a search for the software.
Let me know if it helps.
Regards,
Arul
** Please rate all helpful posts **
