Friday, October 5, 2012

Enable SSH and disable Telnet on Cisco Catalyst series switches

Enable SSH and disable Telnet on Cisco Catalyst series switches


Conf t
aaa new model
username cisco password yourpassword
ip domain name yourdomain.com
crypto key generate rsa
(you can choose size of key modules from 360 to 2048)
end
line vty 0 4
transport input ssh
end

to prevent telnet access to switch


access-list 110 permit tcp any host 192.6.1.7(your switch ip)  eq 22
access-list 110 deny tcp any host 192.6.1.7
access-list 110 permit tcp any any
interface range  gigabitethernet1/0/1-24
ip access-group 110 in
end
copy run start



No comments:

Post a Comment

 
span.fullpost {display:inline;}