Re: Telnet to PIX over VPN

terry · ‎02-26-2002

Need to telnet to PIX over VPN. Have local pool set up for VPN dialer as 172.16.1.1-172.16.1.50. Do I need to just setup a telnet statement to allow access from the local pool?

ex: telnet 172.16.1.0 255.255.255.0 inside

Config from PIX:

ip local pool dialer 172.16.1.1-172.16.1.50

telnet secure 255.255.255.255 inside

telnet 10.10.0.101 255.255.255.255 inside

telnet 10.10.1.103 255.255.255.255 inside

telnet 10.10.1.75 255.255.255.255 inside

telnet 10.10.1.18 255.255.255.255 inside

The VPN currently works fine with the different clients.

Thanks in advance,

Terry

rrbleeker · ‎02-26-2002

Terry,

I don't think it will work. Although the VPN sessions appear to be 'internal' addresses, the PIX still consider them coming from the outside interface. Because you cannot telnet from an outside interface into a PIX, this will not work. Use SSH instead.

7pautore · ‎03-02-2002

yes, just setup telnet statement from that pool of ip and it should be able to work. Remenber that you need to come in via ipsec (vpn)

swb · ‎03-06-2002

You need a change to the access-list also. Otherwise you can't.

I think you need to add the outside address to the list.