Just create an access list with your local IP(s) and apply it to line vty0-x.
Also, make sure you have an access list preventing your private (or internal) subnets
from accessing your network and apply this to your S0/0 interface, this prevents a
spoofed IP from gaining access.
To make things a little better, you might want to add some sort of AAA server instead
of using terminal passwords alone. . .
Thanks and have a great day,
Trevor Williams
Sr. Design Engineer
The TechKnowledgy Center
"A problem well stated is a problem half solved"
Charles Kettering
-----Original Message-----
From: Kevin Brooks [mailto:[EMAIL PROTECTED]]
Sent: Monday, May 20, 2002 9:21 AM
To: [EMAIL PROTECTED]
Subject: Cisco IOS question
On my cisco 3600 router. How can I disable telnet into
serial 0/0. I do need to leave telnet open on
FastEth0/0 but I don't want anyone to be able to
telnet in from the outside.
Any Ideas?
Thanks
__________________________________________________
Do You Yahoo!?
LAUNCH - Your Yahoo! Music Experience
http://launch.yahoo.com
