How to change the default Telnet port of a router [7:58647]
Hi, can anyone tell me is that possible to change the default telnet port no. on a cisco router? Say I dont want to use tcp port 23 to telnet to my company router. Simon Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=58647&t=58647 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: How to change the default Telnet port of a router [7:58647]
use SSH Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=58780&t=58647 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: How to change the default Telnet port of a router [7:58647]
I started using ssh. I think TheraTherm also has a free client. I placed some effort in not using standard port 22 ssh. ip ssh authentication-retries 2 ip ssh port 2500 rotary 1 line vty 0 4 access-class 199 in rotary 1 transport input telnet ssh no access-list 199 access-list 199 permit tcp 000x any eq telnet (inside) access-list 199 permit tcp any any eq 2500 (from outside?) Martijn -Oorspronkelijk bericht- Van: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Namens Simon Cheng Verzonden: donderdag 5 december 2002 20:24 Aan: [EMAIL PROTECTED] Onderwerp: How to change the default Telnet port of a router [7:58647] Hi, can anyone tell me is that possible to change the default telnet port no. on a cisco router? Say I dont want to use tcp port 23 to telnet to my company router. Simon Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=58815&t=58647 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: How to change the default Telnet port of a router [7:58647]
Hi Simon, There is a way, but its a hack. I dont recommend you do this, but just shows that you dont always need to attack the problem directly.. anyway here is a simple diagram s0 s1 10.0.0.110.0.0.2 -- | 172.16.55.1 (eth0) on RTA apply the following config : ip nat inside source static tcp 172.16.55.1 23 172.16.55.1 2002 extendable ! interface Ethernet0 description Dummy interface for lab testing ip address 172.16.55.1 255.255.255.0 no keepalive ! interface Serial0 ip address 10.0.0.1 255.255.255.0 ip nat outside clockrate 38400 ! So basically your mapping the local telnet port 23, to port 2002. If you try and telnet normally to ip 172.16.55.1 you wont initiate a connection as NAT will reply back with a port of 2002. Hence the only way to obtain telnet is to telnet to "172.16.55.1 2002" raj Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=58870&t=58647 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How to change the default Telnet port of a router [7:58647]
Hi Raj, It's work now!!! :) Thanks for your advise. Actually I'm working on the way like you described but I'm digging into the hole in applying additional access list on the vty... that's why it fail. Now everything is good. Thanks Simon ""Raj Santiago"" Hi Simon, > > > There is a way, but its a hack. I dont recommend you do this, but just > shows that you dont always need to attack the problem directly.. > > anyway here is a simple diagram > s0 s1 > 10.0.0.110.0.0.2 > -- > | > 172.16.55.1 > (eth0) > > > on RTA apply the following config : > > ip nat inside source static tcp 172.16.55.1 23 172.16.55.1 2002 extendable > ! > interface Ethernet0 > description Dummy interface for lab testing > ip address 172.16.55.1 255.255.255.0 > no keepalive > ! > interface Serial0 > ip address 10.0.0.1 255.255.255.0 > ip nat outside > clockrate 38400 > ! > > So basically your mapping the local telnet port 23, to port 2002. If you try > and telnet normally to ip 172.16.55.1 you wont initiate a connection as NAT > will reply back with a port of 2002. Hence the only way to obtain telnet is > to telnet to "172.16.55.1 2002" > > raj Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=58913&t=58647 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
