Nov
17
2010
Permit ssh access to your cisco router only from your internal lan
Posted by ebal at 22:25:58 in planet_ellak, planet_Sysadmin

If your internal lan is: 192.168.0.0/27

First create a new access-list:

access-list 123 permit ip 192.168.0.0 0.0.0.31 any

and then add this to your line configuration:

access-class 103 in

If you want more help:

€ ssh ROUTER_IP
 password: 

router>en
Password: 

router#conf t 
Enter configuration commands, one per line.  End with CNTL/Z.

router(config)# access-list 123 permit ip 192.168.0.0 0.0.0.31 any

router(config)# line vty 0 4
router(config-line)# access-class 103 in
router(config-line)# end

router# write mem

  1. Avatar di Alex Alex

    Wednesday, January 22, 2014 - 14:37:50

    Hi,

    thanks for your contribute.

    A little mistake access-class no match with access-list

    123 / 103

    Bye

plesk & iptables »
« hackfest1 Its alive !