It may not be practical due to the physical location of the equipment but you might also set up a terminal server. you can ssh to the terminal server and rev telnet to the device on the console port of the device. then disable access to the vty lines completely on each device.
""Wilson, Christian"" wrote in message news:200211012153.VAA23055@;groupstudy.com... > I have recently implemented the following switches and routers: > > 4006 > 6509 > 3640 > 2600 > > My dillema is how to secure remote administration. I have not been able to > find any documentation supporting SSH on the 4006's. I have found docs on > SSH for the 6509, but only in hybrid mode, and I am running native. I have > found a sketchy doc for the routers implementation of SSH, but it lists that > it is not supported software and documents are scarce. What are my other > alternatives? I have read about cisco secure ACS and have ordered the > software, which should enable many options, but they are unclear to me. > Does RADIUS, S/Key, and TACACS+ encrpt the data between my PC and the > router, or does it just encrypt the login iformation between the router and > the ACS server? I need to protect my sessions end to end. Any advise would > be greatly appreciated! Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=56732&t=56721 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
